Blog Post

Backup Exec
2 MIN READ

Role-based Access Control (RBAC) in Backup Exec

zarana's avatar
zarana
Level 1
9 months ago

With the latest release of Backup Exec, Role-based Access Control (RBAC) is introduced in the product.  
Organizations have different users who manage their backup environment. Each user is designated to perform some specific operations.

Consider a scenario a particular user’s job is to just monitor the environment. Customers do not want that user to do any configuration change in their backup infrastructure. With RBAC, customers can restrict access to different functionalities in Backup Exec Console by assigning different roles to different users. 

Rather than assigning a permission to each operation and to each individual user, access is granted based on pre-defined roles. This simplifies access management by categorizing users into groups with similar job functions and responsibilities. Following are pre-defined roles that can be assigned to a user: 

  1. Administrator 
  2. Storage Administrator 
  3. Backup and Restore
  4. View Only 

In Backup Exec Console, options are enabled based on the role assigned to a user. If a particular operation is not allowed for a user, then either the option is disabled or a message is displayed to the user. 

1. Administrator: 
All operations are allowed for the user having the role “Administrator”.   
Licensing, configuration, logon accounts, and add new workloads are some specific operations which only an administrator can perform. 
 
2. Storage Administrator: 
Only storage related operation can be performed by the user. For example, manage all types of storage, Inventory, Catalog devices, identify and resolve storage issues. For example, users with other roles must contact the storage administrator after the storage is full. 
   
3. Backup and Restore: 
After a user with “Administrator” privileges has added servers in Backup Exec, users with the “Backup and Restore” role are responsible for performing regular backups. In the event of data loss, the users are authorized to initiate restore operations to recover data. A user with this role can modify default job templates that can customize the default retention policies and the backup schedules. 
 
4. View Only: 
Users with this role can only view jobs without the ability to modify them. Operations that just provide information for reference or analysis purpose are enabled. For example, view all running jobs, view job history, run standard reports, and so on. This operation does not allow users to make changes to the environment or data. 

Visit our website to download a free trial and learn more about our products and services.  

 

https://www.veritas.com/protection/backup-exec 
Step by Step guide to download and install Backup Exec product and licenses.

Updated 5 months ago
Version 3.0
No CommentsBe the first to comment