An access level is a named collection of individual permissions. Each access level provides access to an object in accord with a practical scheme. For example, the following access levels are defined for the grid object:
Provides non-destructive access to the grid. It permits operations such as listing users or groups and displaying server or grid information.
Provides access to the grid sufficient for controlling and configuring existing applications.
Provides access to the grid sufficient for developing applications. It permits operations such as creating applications and global catalogs and migrating objects.
Provides access to the grid sufficient to manage volumes, servers, and the grid itself.
Provides complete access to the grid, including the ability to manage users and groups and modify any object ACL.
The following access levels are defined for the application and global catalog objects:
Provides informational access to the object. It permits operations such as displaying object information, getting an object descriptor or monitoring an application.
Provides access to control an object state. It permits operations such as starting or stopping an application or component.
Provides access to configure an application. It also permits operations such as object export.
Provides complete access to the object, including the ability to modify the object ACL, destroy an object, or edit an application’s architecture.
The application and global catalog object access levels are organized such that each includes all of the permissions of the previous. For example, the control access level includes all of the permissions of the read access level, and the configure access level includes all of the permissions of the control access level.
For more information about access levels, see Access Level Relationships.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|