test

WBEMfor Solaris on Sun Developer's Guide

Using the Sun WBEM User Manager to Set Access Control

The Sun WBEM User Manager allows administrators to add and delete authorized users and to set their access privileges. Use this application to manage user authentication and access to CIM objects on a WBEM-enabled system. A user must have a Solaris user account.

You can set access privileges on individual users, on namespaces, or on both. When you add a user, you select a namespace. This action grants the user read access to CIM objects in the selected namespace.

Administrators are users who are logged in to the WBEM administrative account, wbemadmin. Administrators can set the following types of access to CIM objects:

How to Start Sun WBEM User Manager

  1. In a command window, type the command:

    % /opt/SUNWconn/wbem/bin/cimadmin

    The Sun WBEM User Manager is started. The User Manager and Login dialog boxes are displayed at the same time. The Login dialog box shows the name of the current host. Context-help information is available on the fields in the dialog box.

  2. In the Login dialog box, do the following:

    • In the Host Name field, type the name of a host running the CIM Object Manager.

    • In the User Name field, type wbemadmin. You must log in to the administrative account to administer WBEM user accounts.

    • In the Password field, type the password for the wbemadmin account.

  3. Click OK.

    The User Manager dialog box opens with a list of users and their access rights to WBEM objects within the namespaces on the current host.

How to Grant Default Access Rights to a User

  1. Start Sun WBEM User Manager.

  2. In the Users Access portion of the dialog box, click Add.

    A dialog box opens that lists the available namespaces.

  3. Type the name of a Solaris user account in the User Name text entry field.

  4. Select a namespace from the listed namespaces.

  5. Click OK.

    This action grants this user read access to CIM objects in the selected namespace. The user is added to the User Manager dialog box.

  6. Click OK again to close the User Manager dialog box.

How to Change Access Rights for a User

  1. Start Sun WBEM User Manager.

  2. Select the user whose access rights you want to change.

  3. To grant the user read-only access, click the Read check box. To grant the user write access, click the Write check box.

  4. Click OK.

How to Remove Access Rights for a User

  1. Start Sun WBEM User Manager.

  2. In the Users Access portion of the dialog box, select the user name for which you want to remove access rights.

  3. Click Delete to delete the user's access rights to the namespace.

    A confirmation dialog box asks you to confirm your decision to delete the user's access rights. Click OK to confirm.

  4. Click OK again to close the User Manager dialog box.

How to Set Access Rights for a Namespace

  1. Start Sun WBEM User Manager.

  2. In the Namespace Access portion of the dialog box, click Add.

    A dialog box opens that lists the available namespaces.

  3. Select the namespace for which you want to set access rights.

    By default, users have read-only access to a namespace.

  4. To allow no access to the namespace, make sure the Read and Write check boxes are not selected. To allow write access, click the Write check box. To allow read access, click the Read check box.

  5. Click OK to close the User Manager dialog box.

How to Remove Access Rights for a Namespace

  1. Start Sun WBEM User Manager.

  2. In the Namespace Access portion of the dialog box, select the namespace for which you want to remove access control, and then click Delete.

    Access control is removed from the namespace, and the namespace is removed from the list of namespaces on the User Manager dialog box.

  3. Click OK to close the User Manager dialog box.