Configuring RBAC

To configure role-based access control for the NetBackup web UI, perform the following steps.

Table:

Step	Action	Description
1	Configure any Active Directory or LDAP domains.	Before you can add domain users, Active Directory or LDAP domains must be authenticated with NetBackup. Use the vssat command to configure the domains in your environment. See Add AD or LDAP domains.
2	Review the RBAC roles.	NetBackup has three default roles: system administrator, backup administrator, and workload administrator. Review the permissions for these roles to determine which role or roles are appropriate for your users. See NetBackup default RBAC roles. If it is needed, you can create a custom role with a custom set of permissions. See Add a custom role.
3	Add object groups.	Create object groups to organize the assets, application servers, or protection plans in your NetBackup environment. Object groups determine, for example, what assets that a user can view or manage. See Steps to create an object group.
4	Grant access for users through access rules.	Create the access rules that include a user, the role a user has, and the object group that they have access to. You can create multiple access rules for a user, which means that a user can have multiple RBAC roles and access to multiple object groups. See Add access for a user through access rules.