HP Servicecontrol Manager 3.0 User's Guide
HP Servicecontrol Manager Introduction
Users and Roles
Chapter 1
13
Users and Roles
An SCM user can be anyone with a valid operating system login on the CMS. Once a
user is added to SCM, then he can be authorized for roles on one or more nodes in the
management domain. Figure 1-4 represents the relationship between users, roles, and
nodes or node groups.
Figure 1-4 Users and Roles
A role defines the responsibilities associated with an operation or process. Each role is
associated with a set of SCM tools that a user might need for a particular task, such as
database administration or software management. Authorizing a user for a role on a
node or node group enables the user to run the associated set of tools on that node or
node group. For example, the web admin role enables a user to access tools required for
administering a Web server. In Figure 1-4, Fred is authorized for the operator role on
node group A. He can use tool A or tool C, which are associated with the operator role, to
managed all the nodes in node group A.
IMPORTANT Role assignments enable non-root users to run tools as root or as another specified user.
Be careful when granting non-root users permission to run tools as root. Take into
consideration all the capabilities given by a tool, above and beyond the capabilities it is
designed for, before you associate it with a role.
You can have up to 32 roles in SCM including the master role. The master role is the only
default role installed with SCM.
Master Role
The master role provides complete access to all tools for the authorized node or node
group. When a tool is added to SCM, the master role is automatically associated with the
tool. Tools cannot be removed from the master role, and the master role cannot be
Role: Operator
User
Node
Tool A
Fred
1
User
Sue
Node
5
Node Group A
Node
2
Node
3
Node
4
authorized for
also authorized for
Tool C
Role: Master
All
Tools
Role
on
on
on
Node
Group A
Node 3
Node 5
Operator
Master Role
authorized for
Operator
on