Manualshelf

Troubleshooting guide

ManualsBrandsAlcatel ManualsComputer equipment2.2-R02
21222324252627282930
2 — 5620 SAM user security
2-2 Alcatel-Lucent 5620 Service Aware Manager
5620 SAM
System Administrator Guide
2.1 5620 SAM user security overview
This chapter provides information about user access and user security for various
5620 SAM functional areas.
You can configure and manage the following 5620 SAM user security functions and
elements:
creating and managing user groups to which 5620 SAM users are assigned. User
group creation also requires defining the following security elements:
Scope of command roles—contain the roles that define the level of user control in
5620 SAM functional areas such as the read, create, update, and delete access
permissions. See Procedure 2-2 for more information.
Scope of command profiles—contain the appropriate scope of command role for the
types of tasks to be performed. See Procedure 2-3 for more information.
Span of control—is a list of the objects over which the user has control. See
Procedure 2-4 for more information.
Span of control profiles—contain the required spans that allow user-group access to
one or more 5620 SAM managed objects. See Procedure 2-5 for more information.
Span rules—instruct the 5620 SAM to add new services to other spans in addition
to the Default Service span. See Section 2.4 and Procedure 2-6 for more
information.
creating the various 5620 SAM user accounts and the configuration of global
security parameters associated with the account such as specifying the expiry
periods, the allowed number of login attempts, and any automated security e-mail
notifications.
managing 5620 SAM user accounts such as managing passwords, or listing,
suspending, or reinstating users.
managing 5620 SAM user group workspaces
monitoring and managing active client sessions
5620 SAM security functions such as LDAP, RADIUS, and TACACS+
authentication
deleting 5620 SAM security elements that are no longer required, such as inactive
user accounts or user groups.
configuring task monitoring parameters and monitoring the progress of
operational tasks:
all write operations that are performed from the 5620 SAM GUI; for example, when
you click Apply or OK
all write operations that are performed using the OSSI
some read operations; for example, when you click Resync or Collect All
See section 2.7 for a detailed listing of 5620 SAM user security tasks.
Note — See Appendix A for a list of the permissions, access levels,
and descriptions of all predefined scope of command roles and
profiles.
Release 13.0 R2 | May 2015 | 3HE 09815 AAAB TQZZA Edition 01