How do I configure alarm access using roles?

Purpose

Users can only view alarms for objects that are included in the resource groups assigned to their roles. Viewing service-related alarms requires access to the appropriate service-related objects.

Consider the following when configuring service-related alarm access:

  • Service Site: the user must have access to the associated NE and service to view alarms for a service site.

  • SAPs: the user must have access to the associated service and the (NE | port) to view alarms for a SAP.

  • Physical Links: the user must have access to all endpoint objects to view alarms for a physical link.

  • LAGs: the user must have access to the associated NE to view alarms for a LAG.

  • Tunnel Bindings: the user must have access to the associated NE and service to view alarms for a tunnel binding.

  • Unhealthy NEs view: the user must have access to any NEs that might appear in the page.

The following workflow describes the high-level steps required to create a role intended for alarm management, and to assign it to a user group. This workflow applies to all NSP users who need to view object alarms, regardless of which NSP UI they use for alarm viewing.

Steps
Create resource groups
 

Create an NE | port | LAG group directory; see How do I create a group directory?


Create an NE | port | LAG resource group in the group directory, and define a filter that includes the network elements the user needs to view; see How do I configure a resource group?


Create a service group directory; see How do I create a group directory?


Create a Service resource group in the service group directory, and define a filter that includes the services the user needs to view. You can create multiple service resource groups within a group directory; see How do I configure a resource group?

You can create the service resource group based on a Site ID (NE system address) to include all services for the associated NE.


Assign resource groups to roles
 

Add the resource groups to a role; see How do I configure a role?.


Assign the role to the appropriate user group; see How do I configure a user group?.

End of steps