Account
To enable a user to log on to IBM Spectrum Protect Plus and use its functions, an administrator must first add the user to IBM Spectrum Protect Plus. From the Account pane, add new users, delete existing users, change user passwords, and assign user roles.
Role-based access control allows you to set the resources and permissions available to IBM Spectrum Protect Plus accounts. Through role-based access control, administrators can tailor IBM Spectrum Protect Plus for individual users, giving them access to the features and providers they need. Roles contain pre-defined sets of permissions, and are assigned during user account creation. Users are then associated with hypervisors, SLA policies, and reports through the User Access option, which is available throughout the IBM Spectrum Protect Plus interface. Resources and providers assigned to users through permissions will be available upon their next log in.
The following roles are available:
Administrator - The Administrator role provides access to all resources and privileges, which is comparable to the native administrator, or Super User role. No additional resource-specific privileges need to be granted for an Administrator. An Administrator can create new users, as well as edit, delete, and change the passwords of other users, with the exception of the Super User. The Administrator role can only be assigned to native users.
VM Administrator - The VM Administrator role allows a user to register and modify hypervisor resources and modify hypervisor resources delegated by an Administrator, as well as associate hypervisors to assigned SLA policies, perform backup and restore operations, and run and schedule reports delegated by an Administrator. Access to resources available to a VM Administrator must be manually applied by an Administrator through the User Access option on associated resource screens.
BEFORE YOU BEGIN:
- Before importing an LDAP group, register an LDAP provider in IBM Spectrum Protect Plus. See LDAP / SMTP.
To add a native user:
- From the navigation menu, expand System, then click Account.
- Click Add
. The Account Properties pane displays.
- From the Type drop-down select Native User.
- Populate the Name, Password, and Confirm Password fields.
- In the User Roles section, assign a role to the user. For information about assigning roles and associated resources, see User Access.
- Click Save. The new user appears in the Account list.
To import an LDAP group:
- From the navigation menu, expand System, then click Account.
- Click Add
. The Account Properties pane displays.
- From the Type drop-down select LDAP Group.
- From the Group field select an LDAP group to import
- In the User Roles section, assign a role to the group. The Administrator role cannot be assigned to LDAP groups. For information about assigning roles and associated resources, see User Access.
- Click Save. The LDAP group appears in the Accounts list, and associated LDAP users can log in to IBM Spectrum Protect Plus.
To edit a native user's username and password:
All users can change their own usernames and passwords. An Administrator can change the usernames and passwords of other users, with the exception of the Super User.
- From the navigation menu, expand System, then click Account.
- Click the Edit
icon associated with the account to change the username or the Edit Password
icon to reset the password.
- Click Save.
To delete a native user:
An Administrator can delete other users, with the exception of the Super User.
- From the navigation menu, expand System, then click Account.
- Click the Delete
icon associated with the account. A confirmation dialog box displays.
- Confirm the deletion. The user is deleted.
IBM Spectrum Protect Plus 10.1.2
Licensed Material - Property of IBM Corp. © IBM Corporation and other(s) 2018. IBM is a registered trademark of the IBM Corporation in the United States, other countries, or both. | 8/23/2018