红帽全球峰会16.3. Creating and Managing Roles
Red Hat Satellite provides a set of predefined roles with permissions sufficient for standard tasks, as listed in Table 16.1, “Predefined Roles Available in Red Hat Satellite”. It is also possible to configure custom roles, and assign one or more permission filters to them. Permission filters define the actions allowed for a certain resource type. Certain Foreman plug-ins create roles automatically.
| Role | Description[a] |
|---|---|
| Anonymous | The set of permissions that every user is granted, irrespective of any other roles. |
| Discovery manager | View, provision, edit, and destroy discovered hosts and manage discovery rules. |
| Discovery reader | View hosts and discovery rules. |
| Boot disk access | Download the boot disk. |
| Red Hat Access Logs | View the log viewer and the logs. |
| Manager | A most extensive set of permissions, the majority of actions from each resource type is enabled. |
| Edit partition tables | View, create, edit and destroy partition tables. |
| View hosts | View hosts. |
| Edit hosts | View, create, edit, destroy, and build hosts. |
| Viewer | A passive role that provides the ability to view the configuration of every element of the Satellite structure, logs, and statistics. |
| Site manager | A restrained version of the Manager role. |
| Tasks manager | View and edit Foreman tasks. |
| Tasks reader | View Foreman tasks. |
[a]
The exact set of allowed actions associated with predefined roles can be viewed by the privileged user as described in Section 16.3.3, “Viewing Permissions Assigned to a Role”.
| |
16.3.1. Creating a Role
复制链接链接已复制到粘贴板!
The following steps show how to create a role.
Procedure 16.6. To Create a Role:
- Navigate to
. - Click .
- Provide a Name for the role.
- Click to save your new role.
To serve its purpose, a role must contain permissions. After creating a role, proceed to Section 16.3.2, “Adding Permissions to an Existing Role”.
Note
Cloning an existing role is a time-saving method of role creation, especially if you want to create a new role that is a variation of an existing permission set. To clone a role, navigate to
16.3.2. Adding Permissions to an Existing Role
复制链接链接已复制到粘贴板!
The following steps show how to add permissions to a role.
Procedure 16.7. To Add Permissions to a Role:
- Navigate to
. - Select from the drop-down list to the right of the required role.
- Select the from the drop-down list. The (Miscellaneous) group gathers permissions that are not associated with any resource group.
- Click the permissions you want to select from the list.
- Select whether the permission is . This option is selected by default, which means that the permission is applied on all resources of the selected type. When you disable the Unlimited check box, the Search field activates. In this field you can specify further filtering with use of the Red Hat Satellite 6 search syntax. See Section 16.4, “Granular Permission Filtering” for details.
- Click .
- Click to save changes.
16.3.3. Viewing Permissions Assigned to a Role
复制链接链接已复制到粘贴板!
The following steps show how to view permissions assigned to an existing role.
Procedure 16.8. To View Permissions of a Role:
- Navigate to
. - Click to the right of the required role to get to the Filters page.
The Filters page contains a table of permissions assigned to a role grouped by the resource type.
16.3.4. Removing a Role
复制链接链接已复制到粘贴板!
The following steps show how to remove an existing role.
Procedure 16.9. To Remove a Role:
- Navigate to
. - Select from the drop-down list to the right of the role to be deleted.
- In an alert box that appears, click to delete the role.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}