User permissions
The following table describes the permissions defined for each user role, depending on whether native or LDAP authentication is used:
Table 1. Permissions by user roleThis table describes the permissions defined for each user role for local users and LDAP users.
User role
|
Query
|
Configure parameters
|
Configure user credentials
|
Local
|
LDAP
|
Local
|
LDAP
|
Local
|
LDAP
|
Superuser
(Only one Superuser is allowed per system, and it must be a local user.)
|
Yes
|
N/A
|
Yes
|
N/A
|
Yes
|
N/A
|
Security
|
No
|
No
|
No
|
No
|
Can assign Administrator users and control LDAP
|
Administrator
|
Yes
|
No
|
Yes
|
No
|
Can assign Configure and Monitor users
|
Configure
(This role is only applicable for local users.)
|
Yes
|
N/A
|
Yes (an aggregate of FrontendConfigure and BackendConfigure)
|
N/A
|
No
|
N/A
|
FrontendConfigure
|
Yes
|
No
|
Yes
Frontend operations only (volumes, SDCs, snapshots)
|
No
|
No
|
BackendConfigure
|
Yes
|
No
|
Yes
Backend operations only (Protection Domains, Storage Pools, Fault Sets, SDSs, devices, other system settings)
|
No
|
No
|
Monitor
|
Yes
|
Yes
|
No
|
No
|
No
|
No
|
Data is not available for the Topic