1.0
Table Of Contents
- VMware vFabric Data Director Administrator and User Guide
- Contents
- About VMware vFabric Data Director
- Updated Information
- VMware vFabric Data Director and vFabric Postgres Overview
- Managing Data Director Resources
- Managing Users and Roles
- Managing Organizations
- Managing Database Groups
- Managing Database Templates
- Managing Databases
- Cloning Databases
- Managing Database Entities
- Safeguarding Data
- Monitoring the Data Director Environment
- Managing Licenses
- Reconfiguring Data Director Networks
- Change the vCenter IP Address
- Reconfigure the Web Console Network Mapping or Network Adapter
- Reconfigure the vCenter Network Mapping
- Reconfigure the vCenter Network Adapter Settings
- Reconfigure the DB Name Service Network or DB Name Service Network Adapter
- Reconfigure the Internal Network or Internal Network Adapter Mapping
- Verify Network Settings in Data Director
- Data Director Troubleshooting
- Index
Managing Users and Roles 3
User management controls the users that can log in to Data Director and what they can see and do after they
log in.
This chapter includes the following topics:
n
“User Management Overview,” on page 25
n
“Authenticating Users,” on page 26
n
“Role-Based Access Control,” on page 27
n
“Predefined Roles,” on page 28
n
“Privileges,” on page 29
n
“Propagation of Permissions and Roles,” on page 30
n
“Organization Privileges and Permissions,” on page 30
n
“Add Users to Your Organization,” on page 31
n
“Add Roles to an Organization,” on page 31
n
“Grant a Permission to a User,” on page 32
n
“Modify Organization Security Settings,” on page 32
User Management Overview
System and organization administrators use a combination of user logins, privileges, permissions, and roles
(role-based access control) to manage Data Director users. Role-based access control provides management of
users and the tasks that they can perform on objects. You can grant and revoke roles and permissions at the
system level, on organizations, and on database groups, databases, and templates within organizations.
Roles are sets of permissions required to perform particular jobs. Jobs are sets of tasks that a user with a
particular role is responsible for performing, such as the set of tasks that are the responsibility of a database
administrator. System and organization administrators define roles as part of defining security policies, and
grant the roles to users. To change the permissions and tasks associated with a particular job, the system or
organization administrator updates the role settings. The updated settings take effect for all users associated
with the role.
n
To add a user to a job, the system or organization administrator grants the role to the user.
n
To remove a user from a job, the system or organization administrator revokes the role from the user.
Changes are effective immediately.
VMware, Inc.
25