Associating user access rights with a rule set

When the administrator has enabled rule set access controls under Admin > System Parameters, you can restrict which users can access the rule set and associated rules. You can restrict view, edit, delete, enable, and disable rights.

To set up user rights to a rule set

1. Log on to the TrueSight Network Automation application server as an administrator.
2. Open the Edit System Parameters page by navigating to Admin > System Parameters.
   
   
3. Select the Enable Rule Set Access Control Lists parameter.
4. Click Save at the top of the page.
    The fine-grained access control capabilities are enabled.
5. Open the Add a Rule Set page by navigating to Network > Scripts > Rule Sets.
6. Select Add to add a new rule set.
7. Select the Access Control tab, as shown in the following figure. You must have the Manage Rule Set Rights system right to access this tab.
   
   
8. The Role menu lists all TrueSight Network Automation roles except the Reporting system related roles and the root role. For each role:
   • Select Default Rights to apply the system rights from the user's role(s) to this rule set. That is, all users who belong to the selected role will be allowed access to this rule set based on system rights in this role.
   • Select Custom Rights to grant specific rights that override the role's system rights for this rule set. As shown in the figure, you can expand the hierarchy of rights to select fine-grained access control. Any right that is checked grants the right. A right may be dimmed out and cannot be checked or unchecked when you do not have the right yourself and are not allowed to grant it to others.
9. Click Save.