Skip to main content

Managing authentication and authorization

Lenovo XClarity Administrator provides security mechanisms to verify a user's credentials and control access to resources and tasks.

  • Managing the authentication server
    By default, Lenovo XClarity Administrator uses a local Lightweight Directory Access Protocol (LDAP) server to authenticate user credentials.
  • Managing user accounts
    User accounts are used to log in and manage Lenovo XClarity Administrator and all chassis and servers that are managed by XClarity Administrator. XClarity Administrator user accounts are subjected to two interdependent processes: authentication and authorization.
  • Managing stored credentials
    Stored credentials are used to manage authorization and access to chassis and servers that are managed by Lenovo XClarity Administrator using local authentication.
  • Managing roles and role groups
    A role is used to control user access to resources and limit the actions that users can perform on those resources. A role group is a collection of one or more roles and is used to assign those roles to multiple users. The roles that you configure for a role group determine the level of access that is granted to each user that is a member of that role group. Each Lenovo XClarity Administrator user must be a member of at least one role group.
  • Managing access to devices
    Access-control to devices is disabled by default and does not take effect until you enable it