Administer > Configure Security > About Security Group Mappings

About Security Group Mappings

Required only for Operator or Guest users:

Security Group Mappings control which nodes are visible to NNMi operators and guests, and what NNMi operators and guests can do with those visible nodes. (Security Group Mappings are irrelevant to users assigned to the NNMi Administrators User Group. NNMi administrators automatically see all nodes and have full access rights.)

Security Group Mappings have three settings:

  1. About User Groups
  2. About Security Groups
  3. Object Access Privileges Provided in NNMi

NNMi provides the following default Security Group Mappings that allow all NNMi operators and guests to see all Nodes and all incidents that are not associated with any particular node. NNMi administrators can delete these default mappings and create new mappings that provide more limited control. (Deleting a Security Group Mapping does not delete the associated User Group or Security Group, so NNMi administrators can then map those User Groups and Security Groups in other ways with more limited control.)

NNMi provides predefined Object Access Privileges. The Object Access Privilege determines the level of access that each User Group has to the visible nodes. Level of node access includes the actions that can be performed on the nodes. See Object Access Privileges Provided in NNMi.

For example, if an NNMi operator is mapped to a User Group with NNMi Level 2 Operators, but their Security Group Mapping's Object Access Privilege is Object Operator Level 1 (with more limited access privileges than Level 2), that NNMi operator sees all of the actions available to NNMi Level 2 Operators, but can run only those actions allowed for NNMi Level 1 Operators.

If an NNMi operator or guest is assigned to multiple Security Group Mappings

NNMi administrators can map User Groups to Security Groups using the following methods:


Next step: Check Security Configuration