What do I need to know about mapping to storage array roles?

Before mapping groups to roles, review the following guidelines.

The storage array's embedded RBAC (role-based access control) capabilities include the following roles:

Directory Services

If you are using an LDAP (Lightweight Directory Access Protocol) server and Directory Services, make sure that:
  • An administrator has defined user groups in the directory service.
  • You know the group domain names for the LDAP user groups.
  • The Monitor role is required for all users, including the administrator. System Manager will not operate correctly for any user without the Monitor role present.

SAML

If you are using the Security Assertion Markup Language (SAML) capabilities embedded in the storage array, make sure that:
  • An Identity Provider (IdP) administrator has configured user attributes and group membership in the IdP system.
  • You know the group membership names.
  • The Monitor role is required for all users, including the administrator. System Manager will not operate correctly for any user without the Monitor role present.