3.7.0 HP StorageWorks HP Scalable NAS File Serving Software administration guide - HP Scalable NAS 3.7 for Linux (AG513-96002, October 2009)
belong. It then assigns cluster permissions, or rights, to you based on the roles to
which your user account and groups belong. For example, if you belong to a role
that allows filesystem operations and also belong to another role that allows you to
configure servers, you will have both sets of permissions.
A role denying an operation takes precedence over a role that allows the operation.
If you belong to a role that allows you to create, modify, and delete filesystems and
you also belong to a role that denies the ability to delete filesystems, HP Scalable
NAS will authorize you only for creating and modifying filesystems. The deny status
overrides the allow status.
HP Scalable NAS provides a built-in System Administrator role that includes all
accounts that are in the root group on the servers. The System Administrator role
has permission to perform all cluster operations. In general, if a user in the System
Administrator role belongs to another role that denies a cluster operation, the deny
will override the permission granted to the System Administrator role. However,
members of the System Administrator role always have permission to perform security
operations, regardless of their memberships in other roles.
Roles are configured on the Role-Based Security Control Panel. To open the Control
Panel, select Tools > Role-Based Security on the Management Console. The Control
Panel lists all roles that have been created. (The default System Administrator role is
not included.)
Configure security features220