You can add a permission that includes a specific administrator user or group, a specific role, or a specific access group.

In a Cloud Pod Architecture environment, you can add permissions for federation access groups. For more information, see the Cloud Pod Architecture in Horizon document.

Procedure

  1. In Horizon Console, navigate to Settings > Administrators.
  2. Create the permission.
    Option Action
    Create a permission that includes a specific administrator user or group.
    1. On the Administrators and Groups tab, select the administrator or group and click Add Permission.
    2. Select a role.
    3. If the role does not apply to access groups, click Finish.
    4. If the role applies to access groups, click Next, select one or more access groups, and click Finish. A role must contain at least one object-specific privilege to apply to an access group.
    Create a permission that includes a specific role.
    1. On the Role Permissions tab, select the role, click Permissions, and click Add Permission.
    2. Click Add, select one or more search criteria, and click Find to find administrator users or groups that match your search criteria.
    3. Select an administrator user or group to include in the permission and click OK. You can press the Ctrl and Shift keys to select multiple users and groups.
    4. If the role does not apply to access groups, click Finish.
    5. If the role applies to access groups, click Next, select one or more access groups, and click Finish. A role must contain at least one object-specific privilege to apply to an access group.
    Create a permission that includes a specific access group.
    1. On the Access Groups tab, select the access group and click Add Permission.
    2. Click Add, select one or more search criteria, and click Find to find administrator users or groups that match your search criteria.
    3. Select an administrator user or group to include in the permission and click OK. You can press the Ctrl and Shift keys to select multiple users and groups.
    4. Click Next, select a role, and click Finish. A role must contain at least one object-specific privilege to apply to an access group. Only roles applicable to access groups are available for selection.
    Note: Even though the Help Desk Administrators and Help Desk Administrators (Read only) roles are shown as applicable to access groups, permissions can be created only on the root access group.