Cisco Cisco Prime Service Catalog 10.0 Technical References
1-51
Cisco Prime Service Catalog 10.0 Configuration Guide
OL-31034-01
Chapter 1 Organization Design
Roles
To add a new object-level permission to a custom role, use the table above to choose the following:
Modifying an Existing Role
For system-defined roles, you can only modify the members assigned to the role, as well as read/write
access to the role. Custom roles are fully modifiable, including capabilities and permissions, for those
users with the correct administrative rights to do so.
access to the role. Custom roles are fully modifiable, including capabilities and permissions, for those
users with the correct administrative rights to do so.
Standard Table
Data
Data
•
Read all Instance Data: User can view all the standard
instance data.
instance data.
•
Read/Write all Instance Data: User can view and make
changes to all standard instance data.
changes to all standard instance data.
•
Create new standard instance data: User can create new
standard instance data.
standard instance data.
Module
Objects
Permission
Object Type
Choose an object (entity) type from the list box.
Permission for this type
Based on the object type selected, choose the permission.
Assign permission to
Choose one of the following:
All objects of this type – For example, if you choose organizational
unit, then all organizational units are assigned this permission.
unit, then all organizational units are assigned this permission.
Selected Objects – Search for and choose the objects to which you
wish to assign this permission.
wish to assign this permission.
The following additional permissions are applicable for person -
object type and for read and read/write permission types only:
object type and for read and read/write permission types only:
–
All people in the Organizational Unit and its sub-units of
which user is a member – The person assigned to this role
gets access to read or read /write information about all
people from the OU he belongs to and all people belonging
to its sub OUs
which user is a member – The person assigned to this role
gets access to read or read /write information about all
people from the OU he belongs to and all people belonging
to its sub OUs
–
All People in Organizational Units of which user is a
member– The person assigned to this role gets access to
read or read /write information about all people from the OU
he belongs to.
member– The person assigned to this role gets access to
read or read /write information about all people from the OU
he belongs to.
–
All people that belong to the person account – The person
assigned to this role gets access to read or read /write
information about all people from the account he belongs to.
assigned to this role gets access to read or read /write
information about all people from the account he belongs to.
The following additional permissions are applicable for organization
unit- object type:
unit- object type:
–
All Service Teams of which user is a member
–
All Service Teams