Appendix B: LDAP Configuration Illustration
Step D. Configure Roles on the BCM2
A role on the BCM2 determines the system permissions. You must
create the roles whose names are identical to the user groups created
for the BCM2 on the AD server or authorization will fail. Therefore, we
will create the roles named
BCM_User
and
BCM_Admin
on the BCM2.
In this illustration, we assume:
• Users assigned to the
BCM_User
role can only access the BCM2 and
view settings.
• Users assigned to the
BCM_Admin
role can both access and
configure the BCM2 because they have the Administrator
permissions.
To create the BCM_User role with appropriate permissions
assigned:
1. Choose User Management > Roles. The Manage Roles dialog
appears.
Tip: You can also access the Manage Roles dialog by clicking the
Manage Roles button in the Edit User 'XXX' dialog.
2. Click New. The Create New Role dialog appears.
3. Type BCM_User in the Role Name field.
4. Type a description for the BCM_User role in the Description field.
For example, "The role can only view BCM settings".
5. Click the Privileges tab to select "Unrestricted View Privileges,"
which includes all View permissions. The "Unrestricted View
Privileges" permission lets users view all settings without the
capability to configure or change them.
a. Click Add. The "Add Privileges to new Role" dialog appears.
b. Select the permission "Unrestricted View Privileges" from the
Privileges list.
c. Click Add.
6. Click OK. The BCM_User role is created.
7. Keep the Manage Roles dialog opened to continue creating the
BCM_Admin role.
To create the BCM_Admin role with full permissions assigned:
1. Click New. The Create New Role dialog appears.
2. Type BCM_Admin in the Role Name field.
To Next Page
Loading...
