User`s guide

250 XgOS User’s Guide • September 2014

Refer to “Using Active Directory as the IMS” on page 254 or ““Using Role Group Mappings

for AD/LDAP Users” on page 259

for examples of setting the IMS to a particular type of

server.

Using the Internal IMS

XgOS’s internal IMS, called “local,” comes installed with a predefined administrator

(admin) account. You can add users with different roles, to grant or restrict access to

different virtual resources.

User accounts and roles are interrelated:

■ You create user accounts to grant people access to the chassis.

■ The roles that a user has determine which objects the user can modify.

XgOS also supports external IMS servers such as Microsoft Active Directory and

RADIUS. This section describes the Oracle Fabric Interconnect’s local system, which

is always present. For information about external systems, see “Using Active

Directory as the IMS” on page 254 and “Using Role Group Mappings for AD/LDAP

Users” on page 259.

User Roles

A role defines a user’s privileges with regards to modifying objects. The following

table lists the predefined roles in XgOS.

-token-timeout Use this option to control the authentication token time-out. Accepted

values are from 1 to 1440 minutes.

The default value is 5 minutes.

Role Name Access

administrators Allows configuration, editing, and management of all objects in the Oracle Fabric

Interconnect

s (full administrative responsibilities)

network Allows configuration, editing, and management of all objects related to vNIC

configuration, Ethernet I/O cards and ports, network QoS parameters, ACLs, and server

profiles

Parameter Description