HPE OneView
1748198 Members
2649 Online
108759 Solutions
New Discussion юеВ

hpe oneview 4 create security role user/group

 
Pavel_Majorov
Occasional Advisor

hpe oneview 4 create security role user/group

Hello

want to know. is it possible to create your own security role by connecting to ssh? It is interesting to create a separate role for the security Department. view the report.

6 REPLIES 6
BhaskarV
Trusted Contributor

Re: hpe oneview 4 create security role user/group

Hi @Pavel_Majorov 

This feature does not exist today.
The roles are fixed. 
We are investigating this as a requirement for a future release.
Is this a customer ask, and of high priority? 
Let us know.


I am an HPE employee

Accept or Kudo

Pavel_Majorov
Occasional Advisor

Re: hpe oneview 4 create security role user/group

At the moment, we are studying the possibility. the security Department needs to prepare a work monitoring solution for HPE OneView.

If the next update will be able to create their roles it will help.

Thanks a lot.

Pavel_Majorov
Occasional Advisor

Re: hpe oneview 4 create security role user/group

Hello.

Standard roles that have access to download logs are Infrastructure administrator, Network administrator,  Server administrator. 

"Read only" roles can view events, but cannot download the magazines. it's for the security Department. 

There is such an opportunity to configure?

BhaskarV
Trusted Contributor

Re: hpe oneview 4 create security role user/group

Hi @Pavel_Majorov 

What logs are you referring to here? "Audit logs"? 
Audit logs contain security information hence have not been allowed for the "read-only" user to download today.
You also mention downloading "magazines" - what are these? Can you help explain?

Regards,
Bhaskar


I am an HPE employee

Accept or Kudo

Pavel_Majorov
Occasional Advisor

Re: hpe oneview 4 create security role user/group

I was referring to Audit logs. it is clear that ordinary users are not granted access. For the security Department, viewing Audit logs with security information is useful, without the possibility of making changes to the structure.

BradV
Esteemed Contributor

Re: hpe oneview 4 create security role user/group

Could you send the logs to an external rsyslog server?  Then you can dump the logs from openview into a specific log file and give your security department access to that log file.