How does service management implement user access control?

Permissions

Users of NSP's service management function are assigned a permission level that either allows them to, or prevents them from, performing specific operations. These permissions levels are as follows, and are assigned by an NSP administrator within the Users and Security views:

• None

• Read

• Read/write

• Read/execute

• Read/write/execute

The following operations are exclusive to users with write permissions:

• Create a service, tunnel, customer, or steering parameter

• Create a service template or tunnel template

• Associate a service with a template, including bulk association

• Migrate a service to another template

• Unassociate a service from a template

• Change the state of a service or tunnel

• Align (push and pull), audit, or synchronize a service

• Align (push) or audit a tunnel

• Modify service or tunnel definitions

• Assign steering parameters to brownfield tunnels

The following operations are exclusive to users with execute permissions:

• Delete a service, tunnel, customer, or steering parameter

• Delete a service template or tunnel template

• Import or delete an intent type

• Invoke a workflow against a service (the NSP's workflow function will limit the workflows that the user can invoke)

Consult the NSP System Administrator Guide or your NSP administrator for more information.

Note: In addition to the above permissions, non-admin service management users must have Read permission for Network Intents enabled. If any custom RPC actions need to be executed, the non-admin service management users must have Operate Intents permission for Network Intents enabled as well.

© 2024 Nokia. Nokia Confidential Information

Use subject to agreed restrictions on disclosure and use.