Managing Lighthouse Users
Lighthouse supports locally defined users, and remote users who are authenticated and authorized by Authentication Authorization Accounting (AAA) systems such as LDAP, Radius, and TACACs+. Group membership can either be defined locally for local users or defined on the AAA server. Groups that are assigned by the AAA servers must still exist locally.
Role Description
Users must be members of one or more groups. Each group has a role assigned to it which controls the level of access that group members have to the system.
The predefined system roles are:
| Role | Description |
|---|---|
| LighthouseAdmin | The Lighthouse Administrator role is assigned to groups whose members are required to manage and maintain Lighthouse. Members have access to all data on the Lighthouse system and create and manage custom groups with custom permission sets. |
| NodeAdmin | The Node Administrator role is assigned to groups that are required to manage and maintain a set of Nodes. Each group with the Node Administrator role must have an associated Node Filters which is evaluated to define the set of nodes that the group members have access to. |
| NodeUser | The Node User role is assigned to groups that require access a set of nodes. Each group with the Node User role must have an associated Node Filters which is evaluated to define the set of nodes that the group members have access to. Optionally, access to the resources can be limited by associating the saved Resource Filter with the Node User role. |
| Reporter | The Reporter role is assigned to groups that require just read-only access across the system permission sets. |