You can set access privileges for individual name spaces or for a combination of a user and a name space. When you add a user and select a name space, the user is granted read access to CIM objects in the selected name space by default.
An effective way to combine user and name space access rights is to start by restricting access to a name space. Then grant individual users read, read and write, or write access to that name space.
You cannot set access rights on individual managed objects. However, you can set access rights for all managed objects in a name space as well as on a per-user basis.
If you log in as root, you can set the following types of access to CIM objects:
Read Only – Allows read-only access to CIM schema objects. Users with this privilege can retrieve instances and classes, but cannot create, delete, or modify CIM objects.
Read/Write – Allows full read, write, and delete access to all CIM classes, instances, and invoked methods.
Write – Allows write and delete access, but not read access, to all CIM classes and instances.
None – Allows no access to CIM classes and instances.