Viewing All User Roles

This operation enables you to view the roles of all users on the system management page.

Context

On the user role management page, you can click to refresh user role information.
On the user role management page, you can click next to a parameter and enter a keyword to search for the required user role information.

Procedure

Choose Settings > User and Security > Users and Roles > Role Management.

Click

next to the desired role. In the function pane, view role information. Table 1 describes related parameters.

**Table 1** Role parameters
Parameter	Description
Object	Indicates an object under the role.
Permission Group	Indicates a permission group of the role.
Read/Write Permission	Indicates the read and write permissions of a role. Possible values are Read-only and Read and write.

Table 2 lists permissions of the built-in system roles.

**Table 2** Roles and permissions
Role	Permissions
Super administrator	Has full control permissions on storage devices and can create and view users with various roles.
Administrator	Has all permissions except user management and security management. NOTE: Security management includes security policy, session management, access control, certificate, and time configuration. The administrator has the permissions to view security policies, certificates, and time configuration. The administrator does not have the permission to upgrade clusters, expand or reduce clusters, or enable or upgrade the data pilot service. The user with this role can only change its own password and view its own permissions.
System viewer	A system viewer only has the view permission of an administrator. NOTE: The user with this role can only change its own password and view its own permissions.
Security administrator	Has system security configuration permissions, including time configuration, external key service, certificate, security policy, domain authentication, and access control. NOTE: The security administrator has the permission to view licenses. The user with this role can only change its own password and view its own permissions.
SAN resource administrator	Has the permissions to configure block resources and snapshot features. NOTE: A SAN resource administrator has the permissions to view security policies, license management, storage pools, service networks, task centers, data protection, and clusters. The user with this role can only change its own password and view its own permissions.
Machine-machine account	Has all permissions except session management and access control. NOTE: A machine-machine account has the permission to view security policies.