Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home
 HP Systems Insight Manager 5.0 Installation and User Guide > Chapter 1 Product overview

Authorizations
» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

 » Glossary

 » Index

spacerspacerspacer
spacer
spacer
  		 
 

An HP SIM user must have a valid operating system login on the CMS. After a user is added to HP SIM, he or she can be authorized to use a toolbox on one or more systems in the management domain.

Each toolbox is associated with a set of tools that a user might need for a particular task, such as database administration or software management. Authorizing a user for a toolbox on a system or system group enables the user to run the associated set of tools on that system or systems that are members of the system group.

IMPORTANT: Authorization for a toolbox might enable users with non-privileged access (for example, non-root users or users that are not members of the Windows Administrators group) to run tools as root/administrator or as another specified user. Be careful when granting users permission to run tools as root or administrator. Consider all the capabilities given by a tool, above and beyond the capabilities it is designed for, before you associate it with a toolbox.

Default toolboxes

The All Tools toolbox is a default toolbox installed with HP SIM. The All Tools toolbox provides complete access to all tools for the authorized system or system group. When a tool is added to HP SIM, the tool is automatically added to this toolbox. Tools cannot be removed from the All Tools toolbox, and the All Tools toolbox cannot be deleted from HP SIM. If you do not want a user to have access to all available tools for a specific system or system group, they should not be authorized for the All Tools toolbox on that system or system group.

CAUTION: Users assigned to the All Tools toolbox on the Central Management Server can execute commands as any user. Therefore, these users could grant the full configuration rights user privilege to themselves.

Another default toolbox is the Monitor Tools toolbox. This toolbox contains tools that display the state of managed systems but not tools that change the state of managed systems.

HP SIM can have up to 32 defined toolboxes, including the default toolboxes. All toolboxes other than All Tools and Monitor Tools can be enabled, disabled, or deleted.

User privileges

Full configuration rights user.  Full configuration rights users have been given special privileges to administer the HP SIM software. Full rights users manage:

  • Authorizations

  • Systems

  • System groups

  • Users

  • Toolboxes

  • Tools

In addition, full rights users maintain and back up the database and monitor the HP SIM audit log.

By default, root on an HP-UX or Linux CMS or the administrative account used to install HP SIM on a Windows CMS is assigned the full configuration rights user privilege, but this permission can later be revoked. This user is automatically authorized for the All Tools toolbox on all systems, including the CMS. The full configuration rights user privilege can be given to one or more users, and HP SIM requires that at least one user is a full configuration rights user.

Limited configuration rights user.  Limited configuration rights users have limited capability to configure the CMS. They have permission to create, modify, and delete all reports and their own tools.

No configuration rights user.  No configuration rights users cannot configure the CMS. Their ability to manage systems are based on their authorizations.



Product architecture
  		 


Tools  
Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© 2003-2005 Hewlett-Packard Development Company, L.P.