Go to main content
Oracle® ZFS Storage Appliance Administration Guide, Release OS8.7.0

Exit Print View

Updated: July 2017
 
 

User Authorizations

Authorizations allow users to perform specific tasks, such as creating shares, rebooting the appliance, and updating the system software. Authorizations are grouped into scopes, and each scope may have a set of optional filters to narrow the scope of the authorization. For example, rather than an authorization to restart all services, a filter can be used so that this authorization can restart the HTTP service only.

The following table shows the available scopes:

Table 39  User Available Scopes, Filters, and Authorizations
Scope BUI
Scope CLI
Filters
Authorizations
Active Directory
ad
Domain or workgroup name

  • Join an Active Directory domain

  • Join a workgroup
Alerts
alert
-
Configure alert filters and thresholds
Analytics
stat
List of drilldowns

  • Configure analytics hostname lookup policy

  • Create a statistic with this drilldown present

  • Read a statistic with this drilldown present
Appliance
appliance
Appliance name

  • Emit an audit log entry

  • Restore the appliance to factory defaults

  • Power down the appliance

  • Reboot the appliance

  • Modify the appliance name

  • Access the underlying Solaris shell
Clustering
cluster
-

  • Failback resources to a cluster peer

  • Reset a failed cluster I/O device

  • Takeover resources from a cluster peer

  • Transfer resources to a cluster peer
Datasets
dataset
-
Configure dataset retention policies
Hardware
hardware
-

  • Online and offline disks

  • Configure LEDs on disks, appliance, and external enclosures

  • Configure network properties for the service processor

  • Remove a drive as a hot spare

  • Configure a storage pool

  • Unconfigure a storage pool
Keystores
keystore
Keystore name

  • List keys present in a per-user keystore

  • Permit keystore modifications

  • Permit read access to sensitive values in a keystore
Networking
net
-
Configure networking devices, datalinks, and interfaces
Projects and shares
nas

  • Storage pool

  • Project

  • Share

  • Configure who can access a share

  • Change general properties on a share

  • Configure protocol-specific properties

  • Change quota and reservation on a share

  • Change user and group quotas on a share

  • Clear locks held on behalf of an NFS client
Roles
role
Role name

  • Configure authorizations for a role

  • Change a description of a role

  • Create a role

  • Destroy a role
SAN
stmf
-
Configure SAN hosts and targets
Services
svc
Service name

  • Enable or disable service

  • Configure service properties and settings

  • Restart service
Shares property schema
schema
-
Modify property schema
Update
update
-

  • Delete system software

  • Update system software

  • Upload system updates
Users
user
Username

  • Configure authorizations for a user

  • Change a password

  • Configure preferences for a user

  • Configure properties for a user

  • Configure roles for a user

  • Create a user
Workflow
workflow

  • Owner

  • Name

  • Delete workflow

  • Execute workflow
Worksheet
worksheet

  • Owner

  • Name

  • Modify worksheet

  • Read worksheet

Related Topics

  • Adding an Administrator or User BUI, CLI

  • Changing a User Password BUI, CLI

  • Editing Exceptions for a User BUI, CLI

  • Deleting Exceptions for a User BUI, CLI

  • Adding a Role BUI, CLI

  • Editing Authorizations for a Role BUI, CLI

  • Deleting Authorizations from a Role BUI, CLI

  • Adding a User Who can Only View the Dashboard BUI

Copyright © 2009, 2017, Oracle and/or its affiliates. All rights reserved. 
Previous
Next