User Guide
Table Of Contents
User and credential management
Each user is assigned certain privileges that determine their access level in OpenManage Enterprise. For information about
the user roles and feature-based access privileges for OpenManage Enterprise and Power Manager, see the OpenManage
Enterprise User's Guide and OpenManage Enterprise Power Manager User's Guide.
Role and scope-based access
OpenManage Enterprise has Role Based Access Control (RBAC) that clearly defines the user privileges for the three built-in
roles—Administrator, Device Manager, and Viewer. Additionally, using the Scope-Based Access Control (SBAC) an administrator
can limit the device groups that a device manager has access to. The following topics further explain the RBAC and SBAC
features.
Role-based access control (RBAC) privileges
Users are assigned roles which determine their level of access to the appliance settings and device management features. This
feature is termed as Role-Based Access Control (RBAC). The console enforces the privilege required for a certain action before
allowing the action.
This table lists the various privileges that are enabled for each role.
Table 1. Role-based user privileges for Power Manager
Features Administrator Device Manager
(scope for assigned
groups)
Device Manager (scope
for non-assigned groups)
Viewer
Install Power Manager Yes No No No
Upgrade Power
Manager
Yes No No No
Enable Power
Manager
Yes No No No
Disable Power
Manager
Yes No No No
Uninstall Power
Manager
Yes No No No
Add or remove
supported devices
from Power Manager
Yes Yes No No
Add or remove static
groups from Power
Manager
Yes Yes No No
Add or remove
unmonitored devices
from Power Manager
Yes No No No
Add or remove Power
Distribution Units
(PDUs) from Power
Manager
Yes No No No
Monitor PDUs Yes Yes No Yes
Create, edit, or delete
Physical Groups
Yes No No No
Import physical groups
through CSV file
Yes No No No
10 Product and Subsystem Security