As a security system manager, you need to differentiate between types of users, and to limit user privileges based on user responsibilities. To assist you, the BIG-IQ® system provides a default set of roles. You can associate multiple roles with a given user; for example, you can grant a user the edit (Network_Security_Edit) and the deploy (Network_Security_Deploy) roles for network security functions. Roles persist and are available after a BIG-IQ system failover.
To view the defined roles, both default and locally-defined, log in to BIG-IQ System as administrator, and navigate to the Roles panel:
The Roles panel lists each defined role. A description of the role is provided in the properties for that role. To access this description, hover over a role name, click the gear icon, and then select Properties. The User Role Properties screen includes the description.
Refer to the Roles panel online help or to the BIG-IQ® System: Licensing and Initial Setup guide for more information on roles and their use.
By default, the BIG-IQ® Network Security system provides admin as a default user type. The admin user can assign roles to users, but cannot access the command shell or system console.
User types persist and are available after a BIG-IQ system failover.
|Username||Enter the user's login name.|
|Auth Provider||Accept the default of local or from the dropdown list, select the provider that supplies the credentials required for authentication.|
|Full Name||Enter the user's actual name. This field can contain a combination of symbols, letters (upper and lowercase), numbers, and spaces.|
|Password||Enter the password for this user.|
|Confirm Password||Retype the password.|