EAServer’s authorization model is based on roles, which are defined in EAServer Manager. Each role can include and exclude specific user names or digital IDs. If you use native operating system authentication, you can also include and exclude operating system group names; all users in the specified group are affected.
Roles are attached to EAServer packages and components. A package or component’s role controls access as follows:
If any roles are assigned to a package, the user must have all of these roles to use any component in the package.
If any roles are assigned to a component, the user must have all of these roles to use the component.
If roles are assigned to both a component and the package that contains it, the user must have all of the roles that are assigned to the package and component.
You must either refresh or restart EAServer for any role changes to take effect.
Refreshing EAServer
Highlight the Roles folder.
Select File | Refresh.
Defining a new role
Highlight the Roles folder.
Select File | New Role. Enter the required information in the subsequent dialogs:
New Role – the name of the role you are defining.
Description – the description, up to 255 characters, of the role.
Owner – the owner of the role.
Deleting an existing role
Highlight the Roles folder. You see a list of existing roles.
Highlight the role you want to delete.
Right-click the role and select Delete. This option is available only to the owner of the role or the jagadmin user.
Click Yes to confirm deletion of the selected role.
Only the owner or a member of the role named Admin Role
can delete a role, except for Admin Role itself, which cannot be
deleted. See “Admin role in EAServer” for
more information.
Modifying an existing role
Highlight the Roles folder. You see a list of existing roles.
Highlight the role you want to modify.
Select File | Properties.
Make your modifications and click OK.
Adding an existing role, or creating and adding a new role
to a package, component, or method
Double-click the icon for the package, component, or method to expand the folders beneath it. Highlight the Role Membership folder.
Select File | Install Role. Then select one of the following options from the Role wizard:
Install an Existing Role – a list of uninstalled roles appears in the dialog. Highlight the role to be installed and click OK.
Create and Install a New Role – enter the name of the new role to be installed. Complete the role property sheet. The properties are described in “Defining a new role”.
A package, component, or method with
no roles or role memberships defined has no access restrictions.
| Copyright © 2005. Sybase Inc. All rights reserved. |
|
|
