NSP User Access Control (UAC)

User groups and roles

NSP UAC is an optional mechanism that enables an NSP administrator to define user access rights to NSP functions and data. When UAC is disabled, the NSP user access is unrestricted.

The NSP enables you to define resource groups that contain NSP data-model objects; for example, equipment and service components. The NSP also enables the creation of user groups and roles. A role, which is assigned to a user group, can be given read, write, or execute permission to specific functions and resource groups. Consequently, an NSP user has the access defined in a role to only the resources in the associated resource groups.

A UAC resource group can include objects such as the following:

• service—IP links, services, service sites, service endpoints, service bindings

• equipment—chassis, LAGs, devices

• KPI—NE and service performance indicators

• Analytics—Analytics resources