You can restrict a user from accessing certain data in the WebNMS Client and also confine him to viewing and working on selected network topology information only. This can be achieved using the Custom View Scope mechanism of the Security Management. For more information, refer to Managing Custom View Scopes.
The Custom View Scope
enables controlled view of data (only authorized data can be seen on the client)
has improved security functions
enables effective administration
If you have configured Custom View Scope, the changes or restrictions made can be viewed in the Network Database view.
This topic provides an example based on which you can create your own Custom View Scopes.
This example aims at enabling a set of users belonging to a particular group to view details pertaining to SNMP Nodes alone, on the Network Database view.
In WebNMS Client, from Tools menu, choose Security Administration. The Security Administration tool is displayed.
Add a new user named user1.
Add a new group named TopoGroup.
Assign required permissions for the TopoGroup.
Assign the three new users to the TopoGroup.
Set the Scope Criteria.
Select the TopoGroup on the Security tree.
Click Custom View Scope for Group tab on the right-side frame.
From Custom View Scope for Group drop-down box, choose Network Database.
Click Add AuthorizedScope. The Scope Settings dialog box is displayed. Enter the Name as Snmp Node. From Name drop-down box, choose the property as IsSNMP and enter the Value as true. For information on each of the properties listed in the Name drop-down box, refer to Appendix in User Guide.
A screen shot depicting the procedure is given below.
When user1 belonging to the group TopoGroup logs in, only the nodes that have the property IsSNMP set as true is visible on the Network Database view of the WebNMS Client.