user auth roles - access management

Raj,

You are correct.  As one engineer put it, not all things in the GUI have been "RBACified".  Therefore, even if you were to add yourself to each of the 3 pre-defined roles: SystemAdmin, SecurityAdmin, and AuditAdmin and/or if you created a separate role with all of the privileges: isi auth privileges, then associated that user or group to that role, you would not (at least currently) get the equivalent GUI access/visibility/permissions that the default local admin (or root of course) are afforded.

So if i understand correct, there is no way that can any manual created user have access previlages like admin and root  ?

and we just have to user inbuilt admin account for config related administration [ create dir , remove/add node ...etc ]

You are correct.  You will still need to use admin and root until all of the features have a privilege associated with it.  Only then will you be able to use RBAC exclusively to manage the cluster.  I will simply state though that engineering is already aware of the limitations.

hmmm..thanks for the info

I'm also in the same boat to have RBACs configured for local users to manage the Array, but the "ISI_PRIV_XXXX" options are limited ( admin guide page 30) and I'm not finding a ways to grants privileges to handle "SyncIQ" and even the dashboard view. I have opened a case also to support and they are pinging  Engineering team.

Does anyone know is there any issue in creating local user "nharik" which is same as "AD1\nharik" domain account ?

Hi Narahari,

Just want to check with you on the RBAC privileges.

It was said that you opened the case. So any alternatives to the privileges for the local users ?

Thanks

Damal