in our company we have SAN with several MDS 9509 and 9513 switches. We use a FMS 4.1 for management.
The cabling is done by a subcontractor. In future they should also do the port assignment. Enable/disable ports, change the port description.
Therfore i try to define some restricted users.
On device manager i have defined a role SAN-Port with the following rules:
- permit Show *
- permit Config interface
- permit Exec copy
This looks ok for me.
I want to have a similar restriction in the FM client. They should use it as an entry point for their work, as i do.
But i didn't see a possibility to do that.
I can define a role in FMS, but there i can only define the scope of SAN's. When a user with such a role opens the FM client, he cannot access a device manager via right click a switch. The device manager option isn't shown.
If i define a user with a predefined role in FMS, it seems the user can do nearly everything.
So is ther a way to restrict a user like in device manager? Or can we only use the device manager?
AXA Tech Germany