{"id":5586,"date":"2015-05-25T19:26:15","date_gmt":"2015-05-25T09:26:15","guid":{"rendered":"http:\/\/nsrd.info\/blog\/?p=5586"},"modified":"2015-05-25T19:26:15","modified_gmt":"2015-05-25T09:26:15","slug":"basics-configuring-a-reports-only-user","status":"publish","type":"post","link":"https:\/\/nsrd.info\/blog\/2015\/05\/25\/basics-configuring-a-reports-only-user\/","title":{"rendered":"Basics – Configuring a reports-only user"},"content":{"rendered":"

Something that’s come up a few times in the last year for me has been a situation where a NetWorker user has wanted to allow someone to access\u00a0NetWorker Management Console for the purpose of running reports, but not allow them any administrative access to NetWorker.<\/p>\n

It turns out it’s very easy to achieve this, and you\u00a0actually have a couple of options on the level of NetWorker access they’ll get.<\/p>\n

Let’s look first at the minimum requirements \u2013 defining a\u00a0reports only<\/em> user.<\/p>\n

To do that, you first go into NetWorker Management Console as an administrative user, and go across to the\u00a0Setup<\/em> pane.<\/p>\n

You’ll then create a new user account:<\/p>\n

\"New<\/a><\/p>\n

Within the Create\u00a0User dialog, be certain to\u00a0only<\/em> select\u00a0Console User<\/em> as the role:<\/p>\n

\"NMC<\/a><\/p>\n

At this point, you’ve successfully created a user account that can run NMC reports, but can’t administer the NetWorker server.<\/p>\n

However<\/em>, you’re then faced with a decision. Do you want a reports-only\u00a0user that can “look but don’t touch”, or do you want\u00a0a reports-only user that can’t\u00a0view<\/em> any of the NetWorker configuration (or at least, anything other than can be ascertained by the reports themselves)?<\/p>\n

If you want\u00a0your reports user to be able to run reports and you’re not fussed\u00a0about the user being able to view the majority of your NetWorker configuration, you’re done at this point. If however your organisation\u00a0has a higher security focus, you may need to look at adjusting the basic\u00a0Users<\/em> NetWorker user group. If you’re familiar with it, you’ll know this has the following configuration:\"NetWorker<\/a><\/p>\n

This usergroup\u00a0in the default configuration allows any user in the NetWorker datazone to:<\/p>\n