Create a security role

Creating a security role consists of two major steps of adding a role to the Galaxy and then assigning permissions to the role.

Notes About General Permissions:

• In the SMC permissions list, clearing the Can Start SMC check box still enables a user assigned to this role to start the SMC, but not to connect to Platform Manager.

• In the General permissions area, clearing the Can Start/Stop the Engine/Platform permission still permits the user assigned to this role to set the engine or platform objects On Scan or Off Scan.

• If a role is granted the Can Modify Deployed Instances IDE permission, make sure the Can Create/Modify/Delete... permissions in the System Configuration, Device Integration Objects, and Application Configuration groups are also selected. This provides the role with the ability to check in and check out objects.

To create a security role

1. On the Galaxy menu, click Configure and then click Security. The Configure Security dialog box appears.

2. On the Authentication Mode tab select Galaxy.

3. Click the Roles tab.

4. Click the + button to add a security role.

   A role is added to the Roles available list named NewRole.

5. Change the name of the new security role.

6. Select the new security role in Roles available list and assign General and Operational permissions to the role by selecting the checkbox next to each permission you want to add to the role.

   Similar IDE permissions are grouped into lists that can be expanded or hidden. Click the small gray box next to the permission groups to expand or hide the permissions.

7. Click OK to save your changes and close the Configure Security dialog box.