Setting up EMS Access Control

EMS supports two basic access levels: administrative and user.

Administrator permissions control the ability of a user to login as an administrator to create, delete, or view the status of users, destinations, connections, factories, and so on. Administrators with the correct permissions can control user access to the EMS server by creating users, assigning passwords, and setting permissions.

The following procedure describes the general process for administrators to configure users, groups, and permissions and where to find more information on performing each step.

Procedure

  1. Enable access control for the system. See Enable Access Control.
  2. Determine which destinations require access control, and enable access control for those destinations. See Destination Control.
  3. Determine which users need administration permissions, and decide whether administrators can perform actions globally or be restricted to a subset of actions. See Administrator Permissions for more information.
  4. Determine the names of the authorized users of the system and create usernames and passwords for these users. See Users and Groups.
  5. Optionally, set up groups and assign users to groups. See Users and Groups.
  6. Optionally enable an external directory for storing users and group information. See Configure an External Directory.
  7. Create the access control list by granting specific permissions to users (or groups) for destinations that need to be secure. See User Permissions.