Filter
Top Products
CHAPTER 10
Configuring Role-Based Access Control
This chapter includes the following sections:
• Role-Based Access Control, page 159
• User Accounts for Cisco UCS Manager , page 159
• User Roles, page 162
• User Locales, page 166
• Configuring User Roles, page 167
• Configuring Locales, page 169
• Configuring Locally Authenticated User Accounts, page 171
• Password Profile for Locally Authenticated Users, page 177
• Monitoring User Sessions, page 180
Role-Based Access Control
Role-Based Access Control (RBAC) is a method of restricting or authorizing system access for users based
on user roles and locales. A role defines the privileges of a user in the system and the locale defines the
organizations (domains) that a user is allowed access. Because users are not directly assigned privileges,
management of individual user privileges is simply a matter of assigning the appropriate roles and locales.
A user is granted write access to desired system resources only if the assigned role grants the access privileges
and the assigned locale allows access. For example, a user with the Server Administrator role in the Engineering
organization could update server configurations in the Engineering organization but could not update server
configurations in the Finance organization unless the locales assigned to the user include the Finance
organization.
User Accounts for Cisco UCS Manager
User accounts are used to access the system. Up to 48 user accounts can be configured in each Cisco UCS
domain. Each user account must have a unique username and password.
Cisco UCS Manager GUI Configuration Guide, Release 2.0
OL-25712-04 159