6.8. Configuring Role-Based Access Control

6.8.1. Overview of RBAC Configuration Tasks

When RBAC is enabled only users of the Administration or SuperUser role can view and make changes to the Access Control system.

The management console provides an interface for the following common RBAC tasks:

View and configure what roles are assigned to (or excluded from) each user
View and configure what roles are assigned to (or excluded from) each group
View group and user membership per role.
Configure default membership per role.
Create a scoped role

The management CLI provides access to the complete access control system. This means that everything that can be done in the management console can be done there, but a number of additional tasks can be performed with the management CLI that cannot be done with the management console.

The following additional tasks can be performed in the CLI:

Enable and disable RBAC
Change permission combination policy
Configuring Application Resource and Resource Sensitivity Constraints

Report a bug

Where did the comment section go?

Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

6.8. Configuring Role-Based Access Control

6.8.1. Overview of RBAC Configuration Tasks

Where did the comment section go?