Novell Home

Minimal Rights for Configuring BorderManager

Novell Cool Solutions: Feature

Digg This - Slashdot This

Posted: 20 Dec 2001
 

Current version: Novell BorderManager 3.6

Wondering what rights are required to be able to configure BorderManager? Here's what you need:

If you're running NWADMIN with BorderManager snapins for the first time, you must be ADMIN of ROOT. The schema extensions required by BorderManager will be applied by BorderManager snapins for NWADMIN.

If you want to administer a BorderManager server object (except VPN configuration) and its direct container, you (the trustee) must have the following rights:

  • Object Rights of the server:
    Browse (default)
  • Property Rights of the server (all properties):
    Compare, Read (default), Write
  • Object Rights of the direct container of the server object:
    Browse (default), Create (to create or check the existence of the Server-GW object)
  • Property Rights of the direct container of the server object (all properties):
    Compare, Read (default), Write

If you want to administer the VPN configuration of a BorderManager server object, the rights mentioned above are not sufficient. You (the trustee) must have supervisor rights for the Server Object.

If you want to administer BorderManager Access Control Rules on containers paternal to the BorderManager server, you (the trustee) must have the following rights:

  • Object Rights of the container:
    Browse (default)
  • Property Rights of the container (all properties):
    Compare, Read (default)
  • Property Rights of the container (selected properties):
    • Attribute BRDSRVS:Timestamp: Compare, Read, Write, Inheritable
    • Attribute BRDSRVS:Incoming ACL: Compare, Read, Write, Inheritable
    • Attribute BRDSRVS:Outgoing ACL: Compare, Read, Write, Inheritable

For more info, see TID 10022327


Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com

© 2014 Novell