DualShield employs the Role Based Access Control (RBAC) model for access control to the Management Console.
- A user belongs to or has one or many roles
- A role has a set of access permissions
- A permission is right to execution or access
An administrative role is a collection of permissions that can be assigned to an administrator. A role determines what level of control the administrator has over which objects, such as users, tokens, reporting etc.
You can add as many custom administrative roles as your organization needs. You can also assign multiple roles to a single administrator. When an administrator has more than one role, the privileges granted by those roles are combined, allowing the administrator to perform any action granted by the assigned roles.
For example, suppose an administrator is assigned one role that grants permission to view and edit users, and another role that grants permissions to view and edit user groups. Each time the administrator logs on, he or she can view and edit both users and user groups.
A role has 3 properties:
- A descriptive name
- A set of managing domains
- A collection of permissions based on the function of the role
A permission has 3 components:
- A set of scopes
- A set of objects
- A set of actions
The managing domains of an administrative role determine the domains in which the role lives and is managed (by other administrative users with the right to manage roles).
The scope of an administrative role determines in what scope administrator may manage objects.
Actions assigned to the administrative role determine what actions an administrator assigned the role can take on objects such as users, user groups, security domain, units, and various policies. The following common privileges are available for all objects:
- All grants an administrator permission to perform any administrative action on the object.
- Create grants an administrator permission to create/add an object.
- Delete grants an administrator permission to delete an object.
- Edit grants an administrator permission to view and edit an object, but not the ability to create or delete.
- View grants an administrator permission to view an object, but not the ability to add, edit, or delete.
Each object may also have its own special privileges.
You can only assign and add administrative roles with the same or fewer objects than the administrative role assigned to you.
You can only assign and add administrative roles with the same or fewer privileges than the administrative role assigned to you.