Select storage group associated with a role

Users gain access to a storage system or component either directly through a role assignment, or indirectly through membership in a user group that has a role assignment, or both.

Prerequisites

To perform this operation, you must be the Initial Setup User (set during installation), or a SecurityAdmin.

You have chosen a Local Replication, Remote Replication or Device Management role and clicked Select Storage Group(s) when creating or modifying a local user or adding or modifying an authorized rule.

About this task

See Roles and associated permissions for an overview of the Role-Based Access Control (RBAC) functionality.

To select the storage group:

Steps

  1. In the dialog, choose between:
    1. Wildcard—A wildcard syntax used with the storage group component name to allow a single rule to apply to multiple storage groups.
      A simple wildcard syntax can be used with the component name to allow a single rule to apply to multiple SGs as follows:
      abc Exactly these characters
      ? Any single character
      * Any zero or more characters
      + Zero or more additional occurrences of the previous match
      [a-z0-9] Any of these characters
      [!a-z] Anything but one of these characters

      All SG name comparisons are case-insensitive. The following examples show how they are interpreted:

      Table 1. Wildcard syntax examples
      This pattern Matches these Storage Groups Does not match these Storage Groups
      tg_* tg_DB_SG1 or tg_newSG or TG_sg_db tgNewSG
      prod_sg? prod_sg1 or prod_sga or Prod_sg2 prod_sg12 or prod_sgab
      prod_sg[0-9]+ prod_sg1 or prod_sg12 prod_sga or prod_sgab

      The only allowed characters are: a-zA-Z0-9_- along with the above *+?[]! wildcard characters.

      The only roles that can be assigned against storage groups are: Local Replication, Remote Replication, and Device Management.

      Storage groups do not have to exist at the time that a matching Role-Based Authentication Controls (RBAC) rule for them is defined.

      These storage groups-level RBAC rules are only applicable to parent and stand-alone SGs and not child SGs. Child SGs are protected by the RBAC rules, if any, on their parent SG.

    2. Storage Group
    3. Once your input or selection is complete, click Save.
  2. Click OK.