Restricting access to templates

When the administrator has enabled template access controls under Admin > System Parameters, you can restrict who can access each template and their associated rights (that is view, edit, or delete).

In the example below, only Network Engineering can view, edit, or delete the template. To grant view-only rights to the template, select the user role only.

Do the following to set up user rights to a template:

Log on to the TrueSight Network Automation application server as an administrator, and on the Admin > System Parameters page, do the following:

  1. In the Security section, select the Enable Template Access Control Lists parameter.

    SystemParam_Templates.png
  2. Click Save at the top of the page.
     The fine-grained access control capabilities are enabled.
  3. On the Network > Scripts > Templates page, click Add to add a new template.
  4. Click the Access Control tab.
    You must have the Manage Template Rights system right to access this tab.

    AddTemplateAccessControl.png
  5. The Role list contains all Network Automation roles except the Reporting system-related roles and the root role.
    For each role:
    • Select Default Rights to apply the system rights from the user's role(s) to this template. That is, all users who belong to the selected role will be allowed access to this template based on system rights in this role.
    • Select Custom Rights to grant specific rights that override the role's system rights for this template. As shown in the figure, you can expand the hierarchy of rights to select fine-grained access control. Any right that is checked grants the right. A right may be dimmed out and cannot be checked or unchecked when you do not have the right yourself and are not allowed to grant it to others.
  6. Click Save.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*