Hitachi

JP1 Version 12 JP1/Automatic Operation Configuration Guide 


3.1.4 Defining permission levels in JP1/Base (JP1/Base linkage)

In order to link to JP1/Base, you must define JP1/Base permission levels based on the user's roles in JP1/AO.

Permission levels JP1_AO_Admin and JP1_AO_Develop can only be set to the JP1 resource group name *. If you set JP1_AO_Admin or JP1_AO_Develop to a JP1 resource group name other than *, that user will not be able to log in to JP1/AO.

In a cluster system, make the settings the same on both the active server and the standby server.

Table 3‒2: Defining permission levels (JP1/Base link)

Role or authority in JP1/AO

JP1/AO permission level to be specified in JP1/Base

Admin

JP1_AO_Admin

Develop

JP1_AO_Develop

Modify

JP1_AO_Modify

Submit

JP1_AO_Submit

UserManagement

HCS_UserMng_Admin

Note that if the jp1admin user created by default during JP1/Base installation logs in to JP1/AO, it is treated as a user who has been granted UserManagement permissions and Admin role for All Service Groups.

If you use JP1/Base earlier than version 10-10, change the JP1/Base access permission level file as shown below, and then execute the jbsaclreload command.

Table 3‒3: Definitions of the access permission level file

File path

File name

Item to be changed

Definition to be changed

For Windows:

system-drive\Program Files (x86)\Hitachi\JP1Base\conf\user_acl#

For Linux:

/etc/opt/jp1base/conf/user_acl

JP1_AccessLevel

; for JP1/Automatic Operation

JP1_AO_Admin:AO:Admin,Develop,Modify,Execute,View

JP1_AO_Develop:AO:Develop,Modify,Execute,View

JP1_AO_Modify:AO:Modify,Execute,View

JP1_AO_Submit:AO:Execute,View

HCS_UserMng_Admin:HBase:Admin

#

system-drive\Program Files (x86)\Hitachi\JP1Base\ is the default installation location of JP1/Base. If the user has changed the installation location, a path different from this path is displayed.