Search for	Example	Results
A single word	`cat`	Topics that contain the word "cat". You will also find its grammatical variations, such as "cats".
A phrase. You can specify that the search results contain a specific phrase.	`"cat food"` (quotation marks)	Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase.

Search for	Operator	Example
Two or more words in the same topic	`AND` `and` `+` (plus symbol) `&` (ampersand)	`cat AND dog` `"cat food"+milk` `"cat food"&"dog food"`
Either word in a topic	`OR` `or` `\|` (pipe)	`cat OR dog` `cat \| dog`
Topics that do not contain a specific word or phrase	`NOT` `not` `!` (exclamation point)	`NOT cat` `! dog`
Topics that contain one string and do not contain another	`^` (caret)	`cat ^ mouse`
A combination of search types	`( )` parentheses	`cat + (dog \| mouse)` `cat \| dog + (! mouse)`

Network Node Manager i Software10.30

Administer > Configure Security > Using the Security Folder > Configure Security: Limit Node Access

Configure Security: Limit Node Access

To limit node access, use these guidelines. Ways you might limit node access include the following:

To permit a subset of users to access only a subset of nodes.
To divide node access between two or more User Groups

Note You can also use the nnmsecurity.ovpl command to configure User Accounts, User Groups, Security Groups, and Tenants.

Tip Select Help → System Information to view the User Name, NNMi Role, and User Group for the current NNMi session.

To configure Security:

Navigate to the Security workspace.
Make your configuration choices .
Click Save and Close.

Configure Security Tasks (Limit Node Access)
Task	Description
Determine your users, their privileges, and the nodes that each user each should access.	See Determine Your Security Strategy and the following topics: Control Menu Access User Groups Provided in NNMi Determine which NNMi User Group to Assign
Remove the Default Security Group Mapping to NNMi User Groups	To ensure that none of your NNMi operators or guests can see nodes assigned to the Default Security Group, remove the out-of box Security mappings. Note Deleting a Security Group Mapping does not delete the associated predefined NNMi User Group nor the Object Access Privilege definition.
Configure User Accounts	You must create a User Account for each NNMi user.
Configure Additional User Groups	Out-of-box, all operators and guests can access all nodes discovered by NNMi. However, the NNMi administrator can limit visibility to parts of the network for operators and guests with User Groups and Security Groups. Examples of when additional User Groups are needed include the following circumstances: To permit a subset of users to access only a subset of nodes To divide node access between two or more User Groups
Map User Accounts to the Predefined NNMi User Groups	A particular user cannot access the NNMi console until their User Account is mapped to at least one predefined NNMi User GroupNNMi User Groups are those User Groups provided by NNMi. Users cannot access the NNMi console until their User Account is mapped to at least one of the following NNMi User Groups: NNMi Administrators, NNMi Level 2 Operators, NNMi Level 1 Operators (with more limited access privileges than Level 2 Operators), and NNMi Guest Users: NNMi Administrators NNMi Level 2 Operators NNMi Level 1 Operators (with more limited access privileges than Level 2 Operators) NNMi Guest Users Note NNMi provides two additional User Groups: NNMi Global Operators (secondary) Assigning users to this secondary group, in addition to the user's currently assigned NNMi Guest User, NNMi Level 1 Operator, or NNMi Level 2 Operator assignment, provides access to all topology objects, but does not change any other aspect of their currently assigned NNMi Guest User, NNMi Level 1 Operator, or NNMi Level 2 Operator assignment. Users assigned to the NNMi Administrators User Group do not need any secondary group assignment. These users already can access all topology objects. NNMi Web Services Client Used only to provide access for software that is integrated with NNMi. See Integrations with and Third-Party Products - for example, RAMS MPLS WAN Configuration (NNMi Advanced)). Do not use any other User Group for software integrations.
Map User Accounts to Additional User Groups	Map the appropriate User Accounts to each User Group that you created.
Configure Security Groups	Configure a Security Group for each set of nodes that requires limited access. Note Each node can be mapped to one and only one Security Group. For example, if you want to limit access to nodes in a single location, such as Los Angeles, create a Los Angeles Security Group.
Assign Nodes to Security Groups	If you create Security Groups to limit node access, you must assign nodes to the appropriate Security Group. Note Each node can be mapped to one and only one Security Group.
Map Security Groups to User Groups	Users can view a node only if one of the User Groups to which they belong is associated with that node's Security Group. Map each User Group to one or more Security Groups. Note When NNMi administrators map a User Group to a Security Group, they assign the Object Access Privilege for this Security Group Mapping. The Object Access Privilege determines the level of access that each User Group has to the nodes that are visible to it.
Verify Your Configuration Changes	NNMi provides a report that includes information about any of the following potential problems: User Accounts that are not mapped to a User Group User Accounts that are not mapped to an NNMi User Group User Accounts that have unusual NNMi role combinations Security Groups that include nodes from multiple tenants Empty User Groups and Security Groups Tenants with the same name Security Groups with the same name

Send Help Center feedback