Show Table of Contents
3.4. Setting up Access Controls
Access controls are configured by adding users and permissions to a role.
- Hover over the menu, and click the item.

- Click the name of the role.
- Set up the permissions for the role.The Permissions area defines two things: the organizations which are associated with the role and the permissions granted for those organizations.
- Click .

- Select the organization.A single role can be associated with multiple organization, but the permissions are set on each organization individually. So, configure all the permissions for one organization and then select another and configure all of the permissions for that.

- At the bottom of the window, click the Add Permission item.

- Select the component (organization, activation key, provider, or group) for which to add the permission.
- Click .
- When the target is selected, then there is a selection box which lists the available permissions for that target. The available permissions are outlined in Table 3.1, “Subscription Asset Manager Components and Allowed Permissions”.

- Click .
- Enter a name and, optionally, a description for the permission.
- Click the .
- Click the name of the role at the top of the role edit window.

- Next, add at least one administrator user for the role. Even if LDAP authentication (Section 3.5, “Managing Users with LDAP Authentication”) is used for other users in the role, at least one administrator from within Subscription Asset Manager is required.
- Click the item.

- All of the users in Subscription Asset Manager are listed. Click the Add nad Remove labels by the usernames to manage membership in the role.


Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.