F5 User Roles - TMOS 201 Flashcards
What is an Administrator role?
This role grants users complete access to all objects on the system. These users can change their own passwords and cannot have any other user role on the system. Users with the Administrator role have access to all partitions on the system, and this partition access cannot be changed.
What is a Resource Administrator role?
This role grants users complete access to all partitioned and non-partitioned objects on the system, except user account objects. In addition, accounts with the Resource Administrator role can change their own passwords. Users with the Resource Administrator role have access to all partitions on the system, and this partition access cannot be changed.
What is a User Manager role?
A user with a User Manager role on all partitions (that is, with universal access) can manage user accounts in these ways:
Create a user account in any partition and assign roles for that user on any partition.
Modify a user account in any partition and change the existing roles for that user on any partitions.
View all user accounts.
Modify the password on any user account.
Enable or disable terminal access for any user account.
Change his or her own password.
What is a Manager role?
This role grants users permission to create, modify, and delete virtual servers, pools, pool members, nodes, custom profiles, custom monitors, and iRules®®. These users can view all objects on the system and change their own passwords.
What is a Certification Manager role?
This role grants users permission to manage device certificates and keys, as well as perform Federal Information Processing Standard (FIPS) operations.
What is an iRule Manager role?
This role grants users permission to create, modify, and delete iRules. Users with this role cannot affect the way that an iRule is deployed. For example, a user with this role can create an iRule but cannot assign it to a virtual server or move the iRule from one virtual server to another. A user with this role can be assigned universal access to administrative partitions.
What is an Operator role?
This role grants users permission to enable or disable nodes and pool members. These users can view all objects and change their own passwords.
What is an Auditor role?
This role grants users permission to view all configuration data on the system, including logs and archives. Users with this role cannot create, modify, or delete any data, nor can they view SSL keys or user passwords. Users with the Auditor role have access to all partitions on the system, and this partition access cannot be changed.
What is a Guest role?
This role grants users permission to view all objects on the system except for sensitive data such as logs and archives. Users with this role can change their own passwords.
