The XML definition for roles is shown below.
<?xml version="1.0" encoding="utf-8"?> <Role name="Role name" label="Label"> <BaseRole>Name of the based basic role</BaseRole> <Comment>Comment</Comment> <OperationGroups> <OperationGroup name="Operation Group name1"> <Authorities> <Authority>Operation1</Authority> <Authority>Operation2</Authority> </Authorities> </OperatironGroup> <OperationGroup name="Operation Group name2"> <Authorities> <Authority>Operation1</Authority> ... </Authorities> ... </OperationGroup> ... </OperationGroups> </Role> |
Element Name | Description | Remarks (Possible Values, Examples) |
|---|---|---|
Role Name (Role name) | Name of the role | Specify a character string beginning with an alphanumeric character and containing up to 32 alphanumeric characters, underscores ("_"), and hyphens ("-"). |
Label (Role label) | Role label (optional) | Specify a character string of up to 32 alphanumeric characters or symbols. |
Name of the based basic role (BaseRole) | Name of the basic role that has been copied | Specify the name of the existing basic role. There is no value in information displayed for the role when the role to display is a basic role (when the basic role that has been copied does not exist). When using the modify subcommand, the BaseRole element is optional. |
Comment (Comment) | Comment for the role (optional) | Specify a character string of up to 256 alphanumeric characters or symbols. |
Operation Group Name (OperationGroup) | Targeted operation group name (optional) | Example LServer When the OperationGroup tag is deleted during changing of settings of the role, all the operation authorities are deleted from that operation group. |
Operation Name (Authority) | Operation authority name given to role (optional) | Example create For details on operation group and operation name, refer to "Table 15.16 Operation Group and Operation Name" |
Operation Group | Description of Operation Group | Operation Name | Description of Operation Name | Role | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
a | b | c | d | e | f | g | h | i | ||||
LPlatform | Operation authorities concerning L-Platforms | create | Subscribe to an L-Platform | - | - | Yes | No | - | Yes | Yes | No | No |
modify | Reconfiguration | - | - | Yes | No | - | Yes | Yes | No | No | ||
delete | Cancel | - | - | Yes | No | - | Yes | Yes | No | No | ||
ruleset | Modify FW/SLB settings | - | - | Yes | No | - | Yes | Yes | No | No | ||
showlog | Display the event log | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||
LServer | Operation authorities concerning L-Servers | create | Create | - | - | Yes | No | - | Yes | Yes | No | No |
modify | Modify the configuration and move | - | - | Yes | No | - | Yes | Yes | No | No | ||
delete | Delete | - | - | Yes | No | - | Yes | Yes | No | No | ||
resource_operation | Modify the specifications and show the console screen | - | - | Yes | Yes | - | Yes | Yes | Yes | No | ||
start | Starting an L-Server | - | - | Yes | Yes | - | Yes | Yes | Yes | No | ||
stop | Stopping an L-Server | - | - | Yes | Yes | - | Yes | Yes | Yes | No | ||
image_collect | Collect a cloning image | - | - | Yes | Yes | - | - | Yes | Yes | No | ||
backup | Collect a snapshot and backup | - | - | Yes | Yes | - | Yes | Yes | Yes | No | ||
restore | Restore a snapshot and backup | - | - | Yes | Yes | - | Yes | Yes | Yes | No | ||
delete_backup | Delete a snapshot and backup | - | - | Yes | Yes | - | Yes | Yes | Yes | No | ||
maintenance | Maintenance | Yes | - | - | - | - | - | Yes | - | - | ||
Image | Operation authorities concerning image resources | management | Management (Modify and delete) | Yes | No | - | - | - | - | Yes | No | No |
Console | Operation authorities concerning the ROR Console | home | Display Home tab | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
dashboard | Display Dashboard tab | Yes | Yes | Yes | Yes | Yes | - | Yes | Yes | Yes | ||
resource | Display Resource tab | Yes | Yes | - | - | - | - | Yes | Yes | Yes | ||
template | Display Template tab | Yes | - | Yes | - | - | - | Yes | - | - | ||
lplatform | Display L-Platform tab | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||
request | Display Request tab | No | - | No | - | - | No | No | - | - | ||
tenant | Display Tenant tab | Yes | - | No | - | - | - | Yes | - | - | ||
charge | Display Accounting tab | No | - | No | - | - | - | No | - | - | ||
account | Display Account tab | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||
Yes: An initial value has the operation authority.
No: An initial value does not have the operation authority.
-: It is not possible to customize it.
The alphabet described in the head of the row in the table shows the following roles.
a: infra_admin
b: infra_operator
c: tenant_admin
d: tenant_operator
e: tenant_monitor
f: tenant_user
g: administrator
h: operator
i: monitor
