Add an RBAC role
An RBAC role defines the permissions that a NetBackup user has and the access that the user has to workload assets, protection plans, or credentials.
Note:
You can only use the web UI to configure access to workloads, protection plans, and credentials when you create a role. After the role is created you must recreate the role or add an additional role that has the necessary permissions. Or, you can use the NetBackup APIs to update a role.
xref to sample roles/best practices
To add an RBAC role
- On the left, select Security > RBAC and click Add.
- Provide a Role name and a description.
For example, you may want to indicate that role is for any users that are backup administrators for a particular department or region.
- On the Select permissions card, click Assign.
See Role permissions.
The permissions that you select determine the other settings that you can configure for a role.
The Select workloads card is enabled when you select Asset permissions.
The Select protection plans card is enabled when you select Protection plans permissions.
The Credentials card is enabled when you select Credentials permissions.
View or manage NetBackup permissions for hosts, images, jobs, and specific NetBackup configuration settings.
Global tab, NetBackup management
View or manage NetBackup permissions for policies and storage lifecycle policies (SLPs).
Global tab, Protection
View or manage NetBackup permissions for NetBackup security settings, including access control, certificate management, authentication, and encryption.
Global tab, Security
View or manage NetBackup permissions for storage.
Global tab, Storage
View or manage workloads
Assets tab
On the Select workloads card,
View or manage protection plans
Protection plans tab
On the Select protection plans card,
View or manage credentials
Credentials tab
On the Select credentials card,
- On the Select users card, click Assign.
- When you are done configuring the role, click Save.