Users Guide

• Hardened appliance with Security-Enhanced Linux (SELinux) and an internal firewall.

• Encryption of sensitive data in an internal database.

• Use of encrypted communication outside the appliance (HTTPs).

WARNING: Unauthorized users can obtain OS-level access to the OpenManage Enterprise–Tech Release appliance

bypassing Dell EMC's security restrictions. One possibility is to attach the VMDK in another Linux VM as a secondary

drive, and thus getting OS partition access, whereby OS-level login credentials can possibly be altered. Dell EMC

recommends that customers encrypt the drive (image file) to make unauthorized access difficult. Customers must also

ensure that for any encryption mechanism used, they can decrypt files later. Else, the device would not be bootable.

NOTE: AD and LDAP directory users can be imported and assigned one of the OpenManage Enterprise–Tech Release

roles (Admin, DeviceManager, or Viewer). The Single-Sign-On (SSO) feature can be used only till logging in to the

• Role-based OpenManage Enterprise–Tech Release user privileges

• OpenManage Enterprise–Tech Release user role types

Users are assigned roles which determine their level of access to the console settings and device management features. This is termed as

Role-Based Access Control (RBAC). This is a common list of RBAC for users based on their roles and OpenManage Enterprise–Tech

Release features. However, where required, an individual task-level user RBAC list is provided in respective sections for quick reference.

Therefore, the console enforces one role per account. For more information about managing users on OpenManage Enterprise–Tech

Release, see Managing OpenManage Enterprise–Tech Release users.

OpenManage Enterprise–Tech Release provides a built-in report about the group-based user permissions allocated. Click OpenManage

Set up the OpenManage Enterprise–Tech

Release appliance

Y N N

Manage Baseline Y Y N