Scope-based access control example: Scenario overview

An example scenario is used throughout this section to highlight how scope-based access control can be used to restrict access. In this scenario, Company X is launching a cloud-based pilot project for both virtual machines (VM) and bare-metal servers.

A single HPE OneView appliance is configured to host both the environments. Corporate IT is responsible for managing hardware support as well as shared infrastructure components. VM Cloud IT is responsible for managing the VM cloud environment. Service (SRV) Cloud IT is responsible for managing the bare-metal server reservation process. Finance and Human Resource (HR) users are the consumers of the bare-metal servers. All five groups need access to HPE OneView. The solution must ensure that users are only allowed to manage the assigned resources.

A rack with three enclosures is used exclusively for the VM Cloud pilot. A rack with two enclosures is used exclusively for the SRV Cloud pilot. The Finance and HR departments are allocated servers in the enclosures assigned to the SRV Cloud pilot.

More information

Example: Identify users and groups

Example: Determine the best fit HPE OneView role

Example: Define permission scopes