|
Overview
Special Cases
Standard Access
|
Overview
NetDB controls access to records through record type rights and Group rights.
There are 6 record types in NetDB: Group, Domain, User, Admin Team, Network and Node.
There are several hundred Groups that are loosely organized around departments.
All NetDB Users can look at all NetDB records; but only
Users with both appropriate record and Group rights can modify or delete
a record. Users with appropriate record rights can use an existing record
as a template. Below is a table summarizing these rights:
| |
Have Record Rights |
Don't Have Record Rights |
| Have Group Rights |
Get Info, Modify, Delete, Use as Template |
Get Info |
| Don't Have Group Rights |
Get Info, Use as Template |
Get Info |
Special Cases
- To assign a name within a Domain,
the User must belong to the same Group as the Domain and have either
Node or Network rights. For example, to add the host "alpha"
in the "stanford.edu" Domain, the User must be in the Group
"Stanford" (which is the Group for "stanford.edu")
and have Node record rights.
- To assign addresses within an address
space, the User must belong to the same Group as the address space and
also have Node rights. For example, to assign IP address 171.64.60.10,
the User must belong to Group "Biology" (which is the Group
for address space "171.64.60.0/24" which is in the Network
record "Biology-Net") and also have Node record rights.
Standard Access
The table below shows how NetDB access is commonly assigned:
| |
Record Rights |
Group Rights |
| Local Network Administrator (LNA) |
Node |
specific Groups needed by
User |
| Computer Resource Center (CRC) |
Node |
All Groups |
| Networking Systems |
All Records |
All Groups |
|
|
