Introduction | Information Center
You can create, edit and delete roles as well as make changes to role memberships. When you click the Create or Edit buttons the following text boxes and drop lists appear under the General Properties, Member Groups, and Member Users tabs in the panel to the right:
This is the name of the role associated with applications and access privileges.
This is the description of the role. Generally, you use this to define
the parameters of the role. For example, the role name might be Managers,
and the description might be Senior Managers and higher. The description
appears on the console when using the show
command.
This list shows the groups that are included in the role. Selecting a group name and clicking an arrow button moves the item in and out of the role.
Note: If a user appears more than once in the same role (perhaps as both an individual user and as a member of a group), the user is given the union of all permissions of all entries. For example, if the user has read/write access and the user's group has read access, the user is granted read/write access.
This list includes the groups that are not members of the role. They cannot access applications that use this role. Selecting a group name and clicking an arrow button moves the item in and out of the role. The changes take affect immediately.
This list shows the users that are included in the role. Selecting a user name and clicking an arrow button moves the item in and out of the role.
Note: If a user appears more than once in the same role (perhaps as both an individual user and as a member of a group), the user is given the union of all the permissions for all entries. For example, if the user has read/write access and the user's group has read access, the user is granted read/write access.
This list includes the users that are not members of the role. They cannot access applications that use this role. Clicking on the user name toggles the user in and out of the role. The changes take affect immediately.