Rest Roles Access Control

In UFM, there are four predefined roles with the following corresponding values:

  1. System Admin (Role value: 5)

  2. Fabric Admin (Role value: 4)

  3. Fabric Operator (Role value: 3)

  4. Monitoring Only (Role value: 2)

For more information, refer to the User Management Tab.

The "Rest Roles Access Control" tab empowers Admin users to design their custom roles alongside the existing predefined roles. Admins can set permissions and access levels for these custom roles, defining which APIs the roles can access.

Roles are presented in a table format, with the predefined roles highlighted in yellow.

rest-roles1-version-1-modificationdate-1707037666390-api-v2.png

This tab is exclusively available to System_Admin users and can be enabled or disabled through the gv.cfg file. By default, it is enabled.

  1. Click the

    rest-roles2-version-1-modificationdate-1707037666807-api-v2.png

    button.

  2. Fill in the necessary details in the dialog box.

    rest-roles3-version-1-modificationdate-1707037667033-api-v2.png

    By default, all URLs are denied. To allow specific URLs for this role, move them to the "allowed" category.

  1. Select the role that requires updating.

    rest-roles4-version-1-modificationdate-1707037667407-api-v2.png

  2. Modify the allowed list from the role information section.

  1. Right-click on the role that needs deletion.

  2. Choose the "Delete" option from the context menu.

    rest-roles5-version-1-modificationdate-1707037667700-api-v2.png

Warning

Deleting and updating predefined roles is not permitted.

  1. Navigate to the Users Management tab.

  2. Create a new user, and you will find all roles (both custom and predefined) listed under the group list.

    rest-roles6-version-1-modificationdate-1707037667947-api-v2.png

© Copyright 2023, NVIDIA. Last updated on Feb 8, 2024.