User Access

Role-based access control allows you to set the resources and permissions available to IBM Spectrum Protect Plus accounts. Through role-based access control, administrators can tailor IBM Spectrum Protect Plus for individual users, giving them access to the features and providers they need. Roles contain pre-defined sets of permissions, and are assigned during user account creation. Users are then associated with hypervisors, SLA policies, and reports through the User Access option, which is available throughout the IBM Spectrum Protect Plus interface. Resources and providers assigned to users through permissions will be available upon their next log in.

The following roles are available:

Administrator - The Administrator role provides access to all resources and privileges, which is comparable to the native administrator, or Super User role. No additional resource-specific privileges need to be granted for an Administrator. An Administrator can create new users, as well as edit, delete, and change the passwords of other users, with the exception of the Super User. The Administrator role can only be assigned to native users.

VM Administrator - The VM Administrator role allows a user to register and modify hypervisor resources and modify hypervisor resources delegated by an Administrator, as well as associate hypervisors to assigned SLA policies, perform backup and restore operations, and run and schedule reports delegated by an Administrator. Access to resources available to a VM Administrator must be manually applied by an Administrator through the User Access option on associated resource screens.

To assign Administrator privileges:

A native administrator (the account used to log in to IBM Spectrum Protect Plus for the first time) or a user with Administrator privileges can assign Administrator privileges to a new user. The Administrator role can only be assigned to native users.

  1. From the navigation menu, expand System, then click Account.
  2. Click Add Add icon . The Account Properties pane displays.
  3. Select Native User as the user Type, then create the user's name and password.
  4. In the User Roles section, select Administrator, then click Save. The user is created and now has access to all resources and privileges in IBM Spectrum Protect Plus.

To assign VM Administrator privileges:

A native administrator (the account used to log in to IBM Spectrum Protect Plus for the first time) or a user with Administrator privileges can assign privileges to a new user.

  1. From the navigation menu, expand System, then click Account.
  2. Click Add Add icon . The Account Properties pane displays.
  3. Select the user Type. If assigning privileges to a Native User, create the user's name and password. If assigning privileges to an LDAP Group, select the LDAP group.
  4. In the User Roles section, select VM Administrator, then click Save. The user is created with the assigned role. Access to resources available to the role must be manually applied by an Administrator through the User Access option on associated resource screens.

To grant users access to hypervisors:

Access to hypervisors must be manually applied through the User Access option on associated resource screens. A native administrator (the account used to log in to IBM Spectrum Protect Plus for the first time) or a user with Administrator privileges can assign the necessary resources.

  1. From the navigation menu, expand Hypervisor, then VMware or Hyper-V. Click Backup.
  2. From the Backup pane, select a hypervisor, then click User Access. The Add User pane opens.
  3. Click Add Add icon .
  4. Select a user from the Add User section. Click Add.

Upon next login, the user will have access to the assigned hypervisor resources.

To grant users access to SLA Policies:

Access to SLA Policies must be manually applied through the User User icon icon associated with an SLA Policy. A native administrator (the account used to log in to IBM Spectrum Protect Plus for the first time) or a user with Administrator privileges can assign the necessary resources.

  1. From the navigation menu, click SLA Policy.
  2. From the SLA Policy pane, click the User User icon icon associated with an SLA Policy. The Add User pane opens.
  3. Click Add Add icon .
  4. Select a user from the Add User section. Click Add.

Upon next login, the user will have access to the assigned SLA Policy.

To grant users access to reports:

Access to reports must be manually applied through the User Access option on associated resource screens. A native administrator (the account used to log in to IBM Spectrum Protect Plus for the first time) or a user with Administrator privileges can assign the necessary resources.

  1. From the navigation menu, click Report.
  2. From the Report pane, select a report, then click User Access. The Add User pane opens.
  3. Click Add Add icon .
  4. Select a user from the Account column, then select roles to apply to the user from the Roles column.
  5. Click Add. The permissions are assigned to the user.

Upon next login, the user will have access to the assigned report.

 


IBM Spectrum Protect Plus 10.1.2

Licensed Material - Property of IBM Corp. © IBM Corporation and other(s) 2018. IBM is a registered trademark of the IBM Corporation in the United States, other countries, or both. | 8/23/2018