Admin domain access levels, User-defined admin domains, System-defined admin domains – Brocade Fabric OS Administrators Guide (Supporting Fabric OS v7.3.0) User Manual
Page 458
‐
The LSAN zone names must not end with "_ADn".
‐
The LSAN zone names must not be longer than 57 characters.
Using FC-FC Routing to Connect Fabrics
on page 533 for information about the FC-FC
Routing Service and LSAN zones.
Admin Domain access levels
Admin Domains offer a hierarchy of administrative access. To manage Admin Domains, you must be a
physical fabric administrator . A physical fabric administrator is a user with admin permissions and
access to all Admin Domains (AD0 through AD255). Only a physical fabric administrator can perform
Admin Domain configuration and management.
Other administrative access is determined by your defined Role-Based Access Control (RBAC) role
and AD membership. Your role determines your access level and permission to perform an operation.
Your AD membership determines the fabric resources on which you can operate.
lists each Admin Domain user type and describes its administrative access and capabilities.
AD user types
TABLE 83
User type
Description
Physical fabric
administrator
User account with admin permissions and with access to all Admin Domains (AD0
through AD255).
Creates and manages all Admin Domains.
Assigns other administrators or users to each Admin Domain.
The default admin account is the first physical fabric administrator.
Only a physical fabric administrator can create other physical fabric administrators.
Administrative Domain
users
Can be assigned to one or more Admin Domains.
Manage the resources within their Admin Domains.
If their role permits, can create user accounts and assign them to Admin Domains in
their list.
Cannot view other Admin Domain definitions. They can view only members of their own
Admin Domains.
User-defined Admin Domains
AD1 through AD254 are user-defined Admin Domains. These user-defined Admin Domains can be
created only by a physical fabric administrator (refer to
on page 458 for
more information).
on page 456, AD1 and AD2 are user-defined Admin Domains.
System-defined Admin Domains
AD0 and AD255 are system-defined Admin Domains. AD0 and AD255 always exist and cannot be
deleted or renamed. They are reserved for use in creation and management of Admin Domains.
Admin Domain access levels
458
Fabric OS Administrators Guide
53-1003130-01