Making a Connection Profile Read-Only
You may need to delegate Network Discovery tasks to users in non-administrator roles. However, you may not want these users to change connection profiles. You would make a connection profile read-only to prevent hacking and maintain the security and privacy of confidential information. Another reason to make a connection profile read-only is to prevent less-experienced users from modifying a connection profile to use unsupported protocols.
If you want to limit users to viewing credentials and running Network Discovery tasks, you can block Write rights to each connection profile. By blocking Write rights from a non-administrator role, you make a connection profile Read-only to users in that role. The users who are assigned to those non-administrator roles whose Write rights you block can still view and run tasks, but they cannot change that connection profile or create a connection profile.
This task is a step in the process for delegating Network Discovery tasks to non-administrators.
- To make a connection profile read-only
- Log on to the Symantec Management Console as Administrator.
- In the Symantec Management Console, on theSettingsmenu, clickAll Settings.
- In the left pane, underSettings, expandMonitoring and Alerting > Protocol Management > Connection Profilesand clickManage Connection Profiles.
- In theManage Connection Profilespane, clickDefault Connection Profile, and then clickEdit.
- In theDefine Group Settingsdialog box, clickAccess permissions to protocol settings.
- In theSecurity Descriptor Settings for: Default Connection Profiledialog box, select the role, such asSymantec Level 2 Workers, and clickEdit.
- In thePermission Selectiondialog box, uncheckWrite, and clickSelect.
- In theSecurity Descriptor Settings for: Default Connection Profiledialog box, clickApplyto save the settings, and in theDefine Group Settingsdialog box, clickOKto save the connection profile.