Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
Configuring Administrator Groups
The Administrator groups page (Users > Administrator groups) lists all the administrator groups that have been
configured on the VCS, and lets you add, edit and delete groups.
configured on the VCS, and lets you add, edit and delete groups.
When you log in to the VCS web interface, your credentials are authenticated against the remote directory service
and you are assigned the access rights associated with the group to which you belong. If the administrator account
belongs to more than one group, the highest level permission is assigned.
and you are assigned the access rights associated with the group to which you belong. If the administrator account
belongs to more than one group, the highest level permission is assigned.
The configurable options are:
Field
Description
Usage tips
Name
The name of the administrator group.
It cannot contain any of the following characters:
/ \ [ ] : ; | = , + * ? > < @ "
The group names defined in the VCS must
match the group names that have been set up
in the remote directory service to manage
administrator access to this VCS.
match the group names that have been set up
in the remote directory service to manage
administrator access to this VCS.
Access
level
level
The access level given to members of the administrator
group:
group:
Read-write: allows all configuration information to be
viewed and changed. This provides the same rights as
the default admin account.
viewed and changed. This provides the same rights as
the default admin account.
Read-only: allows status and configuration information
to be viewed only and not changed. Some pages, such
as the Upgrade page, are blocked to read-only
accounts.
to be viewed only and not changed. Some pages, such
as the Upgrade page, are blocked to read-only
accounts.
Auditor: allows access to the Event Log, Configuration
Log, Network Log, Alarms and Overview pages only .
Log, Network Log, Alarms and Overview pages only .
None: no access is allowed.
Default: Read-write
If an administrator belongs to more than one
group, it is assigned the highest level
permission for each of the access settings
across all of the groups to which it belongs
(any groups in a disabled state are ignored).
See
group, it is assigned the highest level
permission for each of the access settings
across all of the groups to which it belongs
(any groups in a disabled state are ignored).
See
below for more information.
Web
access
access
Determines whether members of this group are allowed
to log in to the system using the web interface.
to log in to the system using the web interface.
Default: Yes
API
access
access
Determines whether members of this group are allowed
to access the system's status and configuration using
the Application Programming Interface (API).
to access the system's status and configuration using
the Application Programming Interface (API).
Default: Yes
This controls access to the XML and REST
APIs by systems such as Cisco TMS.
APIs by systems such as Cisco TMS.
State
Indicates if the group is enabled or disabled. Access will
be denied to members of disabled groups.
be denied to members of disabled groups.
If an administrator account belongs to more
than one administrator group with a
combination of both Enabled and Disabled
states, their access will be Enabled.
than one administrator group with a
combination of both Enabled and Disabled
states, their access will be Enabled.
Determining the access level for accounts that belong in multiple groups
If an administrator belongs to groups with different levels of access, the highest level of access is granted. Any
groups in a disabled state are ignored.
groups in a disabled state are ignored.
263
Cisco TelePresence Video Communication Server Administrator Guide