Users Guide

ManualsBrandsDell ManualsActive System ManagerOpenManage Software 5.1.1

Security Management

Dell provides security and access administration through role-based access control (RBAC), authentication, and encryption, or through Active Directory for both

the Web-based and command line interfaces.



Role-Based Access Control (RBAC)

RBAC manages security by determining the operations that can be executed by users in specific roles. Each user is assigned one or more roles, and each role

is assigned one or more user privileges that are permitted to users in that role. With RBAC, security administration can correspond closely to an organization's

structure. For information about setting up Dell OpenManage users, see "Assigning User Privileges."



User Privileges

ServerAdministratorgrantsdifferentaccessrightsbasedontheuser'sassignedgroupprivileges.ThethreeuserlevelsareUser, Power User, and

Administrator.

Users can view most information.

Power Users can set warning threshold values, run diagnostic tests, and configure which alert actions are to be taken when a warning or failure event occurs.

Administrators can configure and perform shutdown actions, configure Auto Recovery actions in case a system has a hung operating system, and clear

hardware, event, and command logs. Administrators can also send e-mail.

Server Administrator grants read-only access to users logged in with User privileges; read and write access to users logged in with Power User privileges; and

read, write, and administrator access to users logged in with Administrator privileges. See Table2-2.

Table 2-2.UserPrivileges

Admin access allows you to shut down the managed system.

Write access allows you to modify or set the values on the managed system.

Read access allows you to view the data reported by Server Administrator. Read access does not allow you to change or set the values on the managed

system.



Privilege Levels to Access Server Administrator Services

Table2-3summarizeswhichuserlevelshaveprivilegestoaccessandmanageServerAdministratorServices.

Table 2-3.ServerAdministratorUserPrivilegeLevels

Table2-4 defines the user privilege level abbreviations used in Table2-3.

Table 2-4.LegendforServerAdministratorUserPrivilegeLevels

NOTE: If you are using a firewall, you must open all of the ports listed in Table2-1 to ensure that IT Assistant and other Dell OpenManage applications

function properly.



User Privileges

Access Type



Admin



Write



Read

User



Power User



Administrator



Service

User Privilege Level Required



View



Manage

Instrumentation

U, P, A

P, A

Remote Access

U, P, A

Update

U, P, A

Storage Management

U, P, A

User