A role is a classification of users. Access to managed objects can be restricted to users who are members of a particular role. For example, the ability to view a Linux system can be granted to a Linux Operators role. The Linux system is visible in Operations Sentinel Console only if the user was logged on to the Operations Sentinel workstation with a user-id that was a member, on the Operations Sentinel server, of one of the Windows users or groups defined in the role.
Administration mode in Operations Sentinel Console contains a node to administer user roles. This node is visible to SPO Administrators only. When the SPO Administrator selects the Roles node in the Navigation pane, the Display pane lists all roles that have been defined on that server. The administrator can select a role to have its properties displayed by selecting it in the Display pane. The properties displayed for a role are its name and the list of Windows users or groups that are members of it.
Operations Sentinel contains two predefined roles, SPO Administrators and SPO Users, that contain the local Windows groups SPO Administrators and SPO Users respectively. These roles cannot be modified or deleted.
Figure 1–5 shows the Roles node with the two predefined roles and one site-defined role.
