5-58
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
5






Importing

and

Managing

Devices
Configuring
ACE

Module

and

Appliance

Role-Based

Access

Controls
Configuring
Device

User

Roles
You
can

edit

t

he

predefined

rol

es,

or


you

can

cr

eate

or


edit

user-defined

rol

es.

When

you

create

a

new
role,
you

specify

a

name

and

description

of

the

new

role,

and

then

choose

the

operations

privileges

for
each
task.

You

can

also

assign

this

role

to

one

or

more

users.
Note
This
configuration

is

applicable

only

on

the
device
or
building
block
and

will

not
be
enforced

by
the
ANM.
To

manipulate

the

ANM

RBAC,

go

to

Admin

>

Role-Based

Access

Control.
Procedure
Step
1
Choose
the

item

to

configure:


To
configure

a

virtual

context,

choose
Config
>

Devices

>

context

>

Device

RBAC

>

Roles.


To
configure
a

configuration

building

bl

ock,

choose
Config
>
Global
>
Building

Blocks
>
building_block
>

Role-Based

Access

Control

>

Roles.
A
table

of

the

defined

roles

and

their

settings

appears.
Step
2
In
the

table,

choose

the
type
of

configuration

that

you

want

to
perform
as
follows:


To
add

a

new

role,

click
Add,
enter

the
attributes
described
in
Ta
b

l

e
5-20
,
and

then

click
Deploy
Now
to

deploy

this

configuration

on

the

ACE

and

save

your

entries

to

the

running-configuration

and
startup-configuration
files.


To
edit
an
existing
role,

choose

the

role,

and

click
Edit.
The
Roles

configuration

window

appears.
Step
3
Click
Edit.
The
Rule

table

appears.
Step
4
In
the

Rule

table,

click
Add
to

create

rules

for
this
role,

or
choose
the

rule

that

you
want
to
configure,
and
cl

ick

Edit.
See
Ta

b

l

e


5-21

for

rule

attribute

descriptions.
Ta
b

l

e


5-20
Role
Attributes
Attribute
Description
Name
Name
of

the

role.
Description
Brief
description

of

the

role.