GigaVUE H Series nodes use role-based access to manage access to the Gigamon Visibility Platform. Through H-VUE, you can create roles and assign users to those roles, allowing you to partition separate sets of tool ports for different groups of users while different sets of network ports are shared. This makes it possible to provides different groups of users with different analysis needs to have full access to the packets they need for their tools.
To take advantage of GigaVUE‑FM, Gigamon highly recommends that you have the same user name and password (with roles) registered with the physical node(s). In doing so, GigaVUE‑FM provides the ability to manage and monitor physical devices with all of its features.
- If a user has full access (super admin or admin) on GigaVUE‑FM but limited access on the node, they will be able to view the traffic and all the ports from the Dashboard page, Audit logs and Reports but will not be able to configure the node itself.
- If the user with the same name is created on GigaVUE‑FM and the node but the passwords are different, the user will be able to view all the ports on the node from GigaVUE‑FM but will not be able to configure the node from GigaVUE‑FM. In order to have full access, it is required that both the username and passwords be identical on the node as well as GigaVUE‑FM. To avoid such situations it is recommended to use centralized authorization servers such as LDAP, RADIUS or TACACS+.
For more detailed information related to role-based access, refer to the following sections:
|Role-Based Access and Flow Mapping®
|Locks and Lock Sharing