Configuring EAServer roles

EAServer’s authorization model is based on roles, which are defined in EAServer Manager. Each role can include and exclude specific user names or digital IDs. If you use native operating system authentication, you can also include and exclude operating system group names; all users in the specified group are affected.

Roles are attached to EAServer packages and components. A package or component’s role controls access as follows:

• If any roles are assigned to a package, the user must have all of these roles to use any component in the package.

• If any roles are assigned to a component, the user must have all of these roles to use the component.

• If roles are assigned to both a component and the package that contains it, the user must have all of the roles that are assigned to the package and component.

You must either refresh or restart EAServer for any role changes to take effect.

1. Highlight the Roles folder.

2. Select File | Refresh.

1. Highlight the Roles folder.

2. Select File | New Role. Enter the required information in the subsequent dialogs:

   • New Role – the name of the role you are defining.

   • Description – the description, up to 255 characters, of the role.

   • Owner – the owner of the role.

1. Highlight the Roles folder. You see a list of existing roles.

2. Highlight the role you want to delete.

3. Right-click the role and select Delete. This option is available only to the owner of the role or the jagadmin user.

4. Click Yes to confirm deletion of the selected role.

1. Highlight the Roles folder. You see a list of existing roles.

2. Highlight the role you want to modify.

3. Select File | Properties.

4. Make your modifications and click OK.