Administrator groups have different permissions sets. Administrators inherit permissions of their administrator groups that are specified during the administrator creation.
Context
- By default, the system provides four administrator groups: administrator, operator, auditor, and NBIRole. Table 1 describes the permissions of the default administrator groups.
Table 1 Default administrator group's permissions User Role
Permission
administrator
Admin Role users. Have permissions for all eReplication operations except for configuring the admin and Admin Role users.
operator
Operator Role users. Such users have the following permissions:
- View and refresh resources and all operation permissions of the sites
- All operation permissions of the protected groups
- All operation permissions of the recovery plan
- All operation permissions of monitoring
- View on-line administrators, view and configure the system performance, all operation permissions of data maintenance, view and export system operation logs, notify server
auditor
Auditor Role users. Such users only have permissions to view operation logs dump, view and export system operation logs.
NBIRole
Users belonging to Third-Part System User Group, which cannot log in to eReplication. Such users can only view resource sites, protected groups, and view and execute recovery plans.
- The user type of the default administrator group is Local user.
- When the permissions of the default administrator groups cannot meet permission assignment requirements, the administrator who has the permission to create an administrator group can create an administrator group as required.
- The system allows you to create an administrator group for an interface interconnection user. The user type is Interface interconnection user.
- A maximum of 512 system administrator groups can be created.
Procedure
- On the menu bar, select Settings.
- In the navigation tree, choose .
- Click Create.
- Select the user type of the administrator group to be created.
The administrator group of the interface interconnection user can be created only by the admin account. The maximum permissions of the administrator group are the same as those of the syncadmin account.
- Configure basic information for the administrator group.
- Configure basic information for the administrator group. Table 2 describes related parameters.
Table 2 Administrator group parameters Parameter
Description
Value
Name
Administrator group name.
[Value range]
The name contains 1 to 100 characters, including letters, digits, underscores (_), and hyphens (-), and can start only with a letter or underscore (_).
[Example]
rdoperator
Description
Administrator group description.
[Value range]
Contains 0 to 100 characters.
- On the navigation bar, click Permission Set to select permissions.
- Configure basic information for the administrator group. Table 2 describes related parameters.
- Click OK.