Access to resources – HP Matrix Operating Environment Software User Manual
Page 181
–
Is responsible for creating organizations in the infrastructure orchestration console
and assigning resources to them
–
Can create pools and assign service provider users to them
◦
Service provider architect
Can access the infrastructure orchestration designer to create, modify, and publish
templates for the and organizations
◦
Service provider user
Can log into the infrastructure orchestration self service portal and initiate requests for
provisioning using published templates
•
Organization
The service provider administrator dynamically creates the organization and makes resources
available to the organization using the infrastructure orchestration console. See
and
“Adding resources to an organization” (page 185)
for more
information.
Two Microsoft Windows groups are created on the CMS for each organization:
◦
<organization-id>
_Administrators use the infrastructure orchestration organization
administrator portal to manage the organization’s virtual IO system.
◦
<organization-id>
_Users are essentially the same as service provider users, except
that the organization user's access and control is restricted to the resources assigned to
the organization’s virtual IO system.
See
“Assigning users to an organization” (page 185)
for more information.
NOTE:
If using HP Storage Provisioning Manager, security groups can be defined for each Matrix
organization and comparable roles can be defined for those organization administrators and
organization users (with membership set to the same Windows groups as used for Matrix OE).
The service provider administrator, storage architect, and storage administrator can determine the
extent of shared storage infrastructure, ranging from a separate storage array for each organization
to a shared array with separate storage pools, to separation at the volume level.
For more information, see the following white papers available at :
•
Multi-Tenancy in HP Matrix Operating Environment Infrastructure Orchestration
•
Faster storage provisioning in an HP Matrix Operating Environment
Security in infrastructure orchestration multi-tenancy
Multi-tenancy in infrastructure orchestration ensures that information from one organization does
not pass to another organization.
and
show how resources
and information are filtered.
Access to resources
Access to resources in infrastructure orchestration is hierarchical. The service provider administrator
has unrestricted access to resources and can make them available to organizations. Within an
organization, the organization administrator controls access to compute resources by organization
users.
Security in infrastructure orchestration multi-tenancy
181