Manualshelf

Reference Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage Enterprise SupportAssist
12345678910
Table Of Contents
Login security settings
Failed login behavior
For failed login behavior, see the section "Set the login security properties" in Dell OpenManage Enterprise User's Guide.
Emergency user lockout
For emergency user lockout behavior, see the section "Ending user sessions" in Dell OpenManage Enterprise User's Guide.
User and credential management
For information about the user and credential management, see Dell EMC OpenManage Enterprise User's Guide.
Username and Password complexity
For the recommended complexity and strength of username, see the section "Add and edit OpenManage Enterprise users" in
Dell EMC OpenManage Enterprise User's Guide.
The complexity and strength of passwords must be as per the OpenManage Enterprise recommendation. That is, as per the
recommendation that is provided in the message that is displayed on the OpenManage Enterprise user interface when you enter
a password that does not fulfill the required complexity and strength.
Role and scope-based access control in OpenManage
Enterprise
OpenManage Enterprise has Role Based Access Control (RBAC) that clearly defines the user privileges for the three built-in
rolesAdministrator, Device Manager, and Viewer. Additionally, using the Scope-Based Access Control (SBAC) an administrator
can limit the device groups that a device manager has access to. The following topics further explain the RBAC and SBAC
features.
Role-Based Access Control (RBAC) privileges in OpenManage Enterprise
Users are assigned roles which determine their level of access to the appliance settings and device management features. This
feature is termed as Role-Based Access Control (RBAC). The console enforces the privilege required for a certain action before
allowing the action.
Scope-Based Access Control (SBAC) in OpenManage Enterprise
With the use of Role-Based Access Control (RBAC) feature, administrators can assign roles while creating users. Roles
determine their level of access to the appliance settings and device management features. Scope-based Access Control (SBAC)
is an extension of the RBAC feature that allows an administrator to restrict a Device Manager role to a subset of device groups
called scope.
While creating or updating a Device Manager (DM) user, administrators can assign scope to restrict operational access of DM to
one or more system groups, custom groups, and / or plugin groups.
Administrator and Viewer roles have unrestricted scope. That means they have operational access as specified by RBAC
privileges to all devices and groups entities.
Product and Subsystem Security
7