Add a custom RBAC role
Create a custom RBAC role if you want to manually define the permissions and the access that users have to workload assets, protection plans, or credentials.
Note:
Cohesity reserves the right to update the RBAC permissions for default roles in future releases. Any revised permissions are automatically applied to users of these roles when NetBackup is upgraded. Any copies of default roles (or any custom roles that are based on default roles) are not automatically updated.
To add a custom RBAC role
- Sign in to the NetBackup web UI.
- On the left, select Security > RBAC.
- Select the Add button
- Select the type of role that you want to create.
You can make a copy of a default role that contains all the preconfigured permissions and settings for that type of role. Or, select Custom role to manually configure all the permissions for a role.
- Provide a Role name and a description.
For example, you may want to indicate that the role is for any users that are backup administrators for a particular department or region.
- Under Permissions, select the Edit button or the Assign button.
The permissions that you select determine the other settings that you can configure for the role.
If you select a default role type, certain permissions are enabled only if they are required for that type of role. (For example, the Default Storage Administrator does not require permissions for protection plans. The Default Microsoft SQL Server Administrator requires credentials.)
Workloads are enabled when you select Asset permissions.
Protection plans are enabled when you select Protection plans permissions.
Credentials are enabled when you select Credentials permissions.
- Configure the permissions for the role.
See Role permissions.
- Under Users, select the Assign button.
- When you are done configuring the role, select the Save button.
Note: After a role is created, you must edit permissions for assets, protection plans, or credentials directly from the applicable node in the web UI. For example, to edit permissions for all VMware assets, go to Workloads > VMware and then select VMware settings > Manage permissions. Or, select a VM and select Manage permissions.