Apply or Change User Group Privileges

You can apply privileges to user groups that you add to allow or deny all users within this user group the ability to perform certain operations. This includes items intended for use with separate application products. For the default LIAdministrators, administrators, provisioners, and monitor user groups, only device group privileges can be changed.

Note:

Upon installation of OCSDM, if R226 compliance is enabled, the Lawful Intercept and SIPREC features and their attributes are hidden from view and are not configurable.

User group privileges that are assigned to either the administrators or LIAdministrators user groups inherit most of the same access privileges. However, users assigned to the LIAdministrators user group have full configuration privileges to manage the Configure LI element (Lawful Intercept) in the Device configuration subfolder within the Configuration folder in the Configuration tab. Users assigned to administrators, provisioners and monitors default user groups do not have privileges to configure the Configure LI element.

Note:

If Lawful Intercept (LI) is enabled on the device, LI configuration values become encrypted on both the devices and OCSDM.

All user group privileges that are available through OCSDM are described in the following sections. You may not see some of these user group privileges in the Configuration, Device maintenance, Administrative operations, Fault management, Device groups, and Applications tabs in OCSDM until you install your product plugin.

Apply User Group Privileges for Configuration

  1. Expand the Security Manager slider and select User management, Groups.
  2. In the User Groups pane, select the group you want to modify from the User Groups table and click Edit.
  3. In the expanded group pane, click the Configuration tab and click the folder and subfolder sliders to expand the item operations list.
  4. Select the item row in the operation category table that you want to modify and click the Privileges column to activate the drop-down list.
  5. In the Privileges drop-down list, select the following user group privilege options for folders or items in the Configuration tab table described below:
    • Full—Allowed to perform administrative operations.
    • None—Not allowed to perform administrative operations.
    • View—Allowed to monitor only.

    Note:

    The fields described below appear if all features are enabled.
  6. Click Apply.

Apply User Group Privileges for Device Maintenance

  1. Expand the Security Manager slider and select User management, Groups.
  2. In the User Groups pane, select the group you want to modify from the User Groups table and click Edit.
  3. Select the Device maintenance tab to modify user group privileges and click on the folder slider to expand the item operations list.
  4. Choose the item row in the operation category table that you want to modify and click the Privileges column to activate the drop-down list.
  5. In the Privileges drop-down list, choose the following options:
    • Full—The user group is allowed to reboot a device.
    • None—The user group is not allowed to reboot a device.
  6. Click Apply.

Apply User Group Privileges for the Administrative Operations

  1. Expand the Security Manager slider and select User management, Groups.
  2. In the User Groups pane, choose the group you want to modify from the User Groups table and click Edit.
  3. In the expanded group pane, click the Administrative operations tab and click the folder and subfolder sliders to expand the item operations list.
  4. Choose the item row in the operation category table that you want to modify and click the Privileges column to activate the drop-down list.
  5. In the Privileges drop-down list, choose the following user group privilege options for folders or items in the Administrative operations tab table described below:
    • Full—(Default) Allowed to perform administrative operations.
    • None—Not allowed to perform administrative operations.
    • View—Allowed to monitor only.
  6. Click Apply.

Apply User Group Privileges for Fault Management Operations

An element manager system (EMS) must be licensed to apply user-group privileges for fault management operations that apply to the events and alarms that appear on the Fault Manager slider.

  1. Expand the Security Manager slider and select User management, Groups.
  2. In the User Groups pane, choose the group you want to modify from the User Groups table and click Edit.
  3. Click the Fault management tab and click the folder and subfolder sliders to expand the item operations list.
  4. Choose the item row in the operation category table that you want to modify and click the Privileges column to activate the drop-down list.
  5. In the Privileges drop-down list, choose the following user group privilege options for folders or items in the Fault management tab table described below:
    • Full—Allowed to perform event or alarm operations.
    • None—Not allowed to perform event or alarm operations.
  6. Click Apply.

Apply User Group Privileges for Device Groups

Use this task to apply user-group privileges for device groups that appear on the Device Manager slider.

  1. Expand the Security Manager slider and select User management, Groups.
  2. In the User Groups pane, select the group you want to modify from the User Groups table and click Edit.
  3. Click the Device groups tab.
  4. In the Device groups box table, complete the following fields:
    The Preview box displays the device group based on the privileges that are assigned (Full, View).
  5. Repeat the previous step for other device groups (if there are any).
  6. Click Apply.

Apply User Group Privileges for Route Manager

Use this task to apply user-group privileges for Oracle Communications Session Delivery Manager configurations.

Depending on your user privileges in Oracle Communications Session Delivery Manager, you can enable privileges to configure route set groups and templates, perform backups or restore route sets, and perform route set operations on devices.

  1. On the navigation bar, select Security Manager, User management, Groups.
  2. In the User Groups pane, select the group you want to modify from the User Groups table and click Edit.
  3. In the expanded group pane, click the Configuration tab and expand the Route Management Central configuration folder and expand it to expose the following folder items:
  4. Click Apply.

Apply User Group Privileges for Applications

  1. Expand the Security Manager slider and select User Management, Groups.
  2. In the User Groups pane, select the group you want to modify from the User Groups table and click Edit.
  3. Select the Applications tab and click to expand the Applications folder.
  4. Select any folder or folder item row that are described in the table below that you want to modify and click the Privileges column to activate the drop-down list.
    Select the following privilege from the Privileges drop-down list:
    • Full—Enable GUI elements (such as tabs) to perform configuration operations.
    • View—View information only.
    • None—Disable configuration operations and make them disappear from the GUI.

    Note:

    You must set the Execute Reports item privilege level to Full. See the table below for more information.
  5. Click Apply.