Users Guide

• Role-based access that limits access to console settings and device actions.

• Hardened appliance with Security-Enhanced Linux (SELinux) and an internal firewall.

• Encryption of sensitive data in an internal database.

• Use of encrypted communication outside the appliance (HTTPs).

WARNING: Unauthorized users can obtain OS-level access to the OpenManage Enterprise appliance bypassing Dell

EMC's security restrictions. One possibility is to attach the VMDK in another Linux VM as a secondary drive, and thus

getting OS partition access, whereby OS-level login credentials can possibly be altered. Dell EMC recommends that

customers encrypt the drive (image file) to make unauthorized access difficult. Customers must also ensure that for

any encryption mechanism used, they can decrypt files later. Else, the device would not be bootable.

• Role-based OpenManage Enterprise user privileges

• OpenManage Enterprise user role types

Role-based OpenManage Enterprise user

privileges

Users are assigned roles which determine their level of access to the console settings and device management features. This is termed as

Role-Based Access Control (RBAC). This is a common list of RBAC for users based on their roles and OpenManage Enterprise features.

However, where required, an individual task-level user RBAC list is provided in respective sections for quick reference. Therefore, the

console enforces one role per account. For more information about managing users on OpenManage Enterprise, see Manage

OpenManage Enterprise users.

Table 1. Role-based user privileges in OpenManage Enterprise

6 Security features in OpenManage Enterprise