Available roles

The roles that you can associate with a user or group account are:

Monitor — Grants permission to use the System Management Console to view the HCP system status and most aspects of the system configuration, including tenant configurations. The monitor role does not grant permission to view user or group accounts.

Administrator — Grants permission to use the System Management Console to view the HCP system status, perform most system configuration activities, create and manage tenants, and download the HCP internal logs. The administrator role does not grant permission to view or configure user or group accounts.

Security — Grants permission to use the System Management Console to view the HCP system status, create and manage user accounts, configure remote authentication, modify system security settings, configure syslog and SNMP logging and email notification, and view security events in the system log.

Compliance — Grants permission to use the Tenant Management Console to work with retention classes and retention-related settings and perform privileged deletes, as well as to use the System Management Console to view the HCP system status. Using the Tenant Management Console is possible only for the default tenant and for HCP tenants that are configured to allow system-level users to manage them and search their namespaces (see Tenant-level administration).

Service — Grants permission to use the System Management Console to view the HCP system status and perform advanced system reconfiguration and management activities. The service role does not grant permission to view or configure user or group accounts.

Important: You should perform activities restricted to the service role only after consulting your authorized HCP service provider.

Search — Grants permission to use the metadata query API and Search Console to query or search the default namespace and any namespaces owned by HCP tenants that are configured to allow system-level users to manage them and search their namespaces. (see Tenant-level administration).

Note: To use the metadata query API or Search Console for access only to the HCP namespaces owned by a specific tenant, a user must have a tenant-level user account or an AD user account that’s recognized at the tenant level. For more information on these accounts, see Managing a Tenant and Its Namespaces.

The monitor, administrator, security, and compliance roles also grant access to use the HCP management API for specific activities. For more information, see HCP Management API Reference.

Trademark and LegalDisclaimer

© 2016 Hitachi Data Systems Corporation. All rights reserved.