Home
Configuring
Configure your environment.
Managing Workload Security
You can manage security settings in your environment both from the Orchestration CLI and the Dynamic Workload Console.
Managing access control list from the Orchestration CLI

Configuring
Configure your environment.
- Configuring an agent
  In this topic you can find information about how to configure an agent.
- Configuring Orchestration CLI
  The extension for Orchestration CLI is bundled with the product. If required, you can download it as a stand-alone feature also.
- Managing Workload Security
  You can manage security settings in your environment both from the Orchestration CLI and the Dynamic Workload Console.
  - Managing access control list from the Orchestration CLI
  - Managing access control list Dynamic Workload Console
  - Managing security roles from the Orchestration CLI
    In this topic you can find the syntax to create a security role.
  - Managing security roles from the Dynamic Workload Console
  - Managing security access
  - Actions on security items
  - Attributes for item types
  - Managing authentication using API Keys
    Learn what API Keys are and how they can secure authentication quickly and easily.
- Configuring the Dynamic Workload Console for Single Sign-On
  Configure the Dynamic Workload Console for Single Sign-On.
- Configuring High Availability
  Performance can be highly improved by configuring multiple Dynamic Workload Console instances in a High Availability configuration, so as to have multiple console instances working at the same time and with the same repository settings.
- Configuring a user registry
  In this topic you can find information about how to configure a user registry.
- Customizing your global settings
  Learn how to customize advanced settings of the Dynamic Workload Console.

Managing access control list from the Orchestration CLI

About this task

Create an access control list by assigning security roles to users or groups in one or more folders.

Access control lists can be of standard or administrative type. Standard access control lists are based on folder.

You can either give access to user or groups, or manage and view access control lists from Orchestration CLI.

Give access to users or groups

About this task

You can give standard or administrative access from the Orchestration CLI.

To create a standard access control list, use the following syntax:

$acl
ACCESSCONTROLLIST FOLDER /FOLDERPATH
        user1 SECROLE1
        user2 SECROLE2, SECROLE3
        ...
        group: group4 SECROLE4
        ...
END

Note: You cannot reference a folder that does not exist, therefore you must create a folder before referencing it in the access control list.

To create an administrative access control list, use the following syntax:

$acl
ACCESSCONTROLLIST ADMIN
        user1 ADMIN_SECROLE1
        user2 ADMIN_SECROLE2, ADMIN_SECROLE3
        ...
        group: group4 ADMIN_SECROLE4
        ...
END

Note: Administrative access control lists cannot contain standard security roles. At the same time, standard access control lists cannot contain administrative security roles.

Results

The access definition is now added to the database.

Manage access control lists

About this task

You can manage existing access control lists. You can find the list of available commands below: