With OSM version T0682 H02 ACJ and later, the Access Control List feature within the OSM
Service Connection provides greater flexibility for controlling access to specific OSM actions.
Previously, there were two levels of control that could not be configured: one set of actions that
could be performed by super group users only and the rest of the actions, which could be performed
by all non-super group users as well. This new Access Control List feature is applicable only to
actions tied to OSM infrastructure commands and

not those executed via the SPI and Guardian

interface, so as to not conflict with the command authorization settings already in place for SPI
subsystems.

Changes made to access control settings are system-wide, not console-specific. In other words,
any changes made apply to that NonStop system regardless of where a user logs on from. You
can leverage access control settings by migrating the settings created on one NonStop system to
other NonStop systems (see

Migrating Access Control List Settings

To launch the Access Control List dialog box, select Access Control List from the

Tools menu

on the

OSM menu bar. In the example below, the box under the Roles heading lists the three default roles
that OSM provides for each system; any additional roles that you create are displayed here also.
When you select a role, you can see the members assigned to that role, the privileges granted to
all members – that is – the names of the OSM actions that can be performed by the members of
that role, as well as a comments field for an optional description of the role.

Controlling Access to Actions

This manual is related to the following products:

Integrity NonStop H-Series