When Security Management makes a real-time decision about whether to permit a user or user group access to an asset, it must identify two entities--the user and the asset. Once identified, CA NSM must determine what policies (if any) have been defined that describe how this access attempt should be handled. Defining these policies typically uses one of two approaches--“user perspective” or “asset perspective.”
Defining an access permission from the user perspective can be thought of in terms of "what asset does this user need to access, and where?" Defining an access permission from the asset perspective can be thought of in terms of "who requires access to this asset, and where?" CA NSM is uniquely capable of supporting both perspectives in granting access permissions to assets.
A common requirement of both perspectives is that the asset access rule have a specific access mode and a specific access type. For lists of access modes and access types, see Access Modes.
|
Copyright © 2010 CA.
All rights reserved.
|
|