Roles and privileges on IBM Storwize
To allow Snapshot Manager for Data Center to perform snapshot management operations, ensure that the IBM Storwize user account used for plug-in configuration has the following roles and privileges assigned:
Create snapshot
Export snapshot
Restore snapshot
Delete snapshot
Here are the predefined user roles in IBM Storwize:
Security Administrator - can manage all the Storwize V7000 Unified features and functions.
Administrator - can manage everything in the system except creating, changing, or removing users or user groups, changing the user group assignment of users, or assigning roles to user groups.
Export Administrator - can manage the share and export definitions for all supported protocols.
Storage Administrator - can manage storage, pools, disks, file systems, and file sets.
Snapshot Administrator - can manage snapshots for file systems, file sets, and peer snapshots.
System Administrator - can manage the network, system, file modules, tasks, system and alert logs, traces, dumps, performance center, and authentication.
Copy Operator - can manage all FlashCopy®, Metro Mirror, and Global Mirror relationships, Tivoli® Storage Manager and Tivoli Storage Manager for Space Management integration, NDMP, asynchronous replication, and remote caching.
Monitor - can only list management information.
Privileged - can submit native Linux commands with Linux root privilege in addition to all other user role-authorized functions.
Data Access - can clone files.
Users with Security Administrator, Administrator, and Privileged role assigned can perform all the snapshot management operations in NetBackup.