This topic describes how to maintain policy servers in the IDaaS console, such as view details, perform administrator query, and manage roles.

View file system details

  1. Log on to the IDaaS console as an IT administrator. For more information, see Logon in Administrator Guide.
  2. In the left-side navigation pane, choose Authorization > Policy Servers.
  3. Find the target policy server and click View Details.
  4. The View Details page consists of the General Information and API Information sections.

Create a policy server

  1. Log on to the IDaaS console as an IT administrator. For more information, see Logon in Administrator Guide.
  2. In the left-side navigation pane, choose Authorization > Policy Servers.
  3. Click Create Policy Server in the upper-right corner of the page.
  4. In the Create Policy Server dialog box that appears, enter a server name and click OK.
  5. The new policy server is displayed on the Policy Servers page, with the View Details, Manage Role, Manage Resources, Authorization Management, Modify, and Delete available in the Actions column and the Enable switch available in the Status column.

Manage roles

  1. Log on to the IDaaS console as an IT administrator. For more information, see Logon in Administrator Guide.
  2. In the left-side navigation pane, choose Authorization > Policy Servers.
  3. Find the new policy server and click Manage Roles in the Actions column.
  4. On the Manage Roles page, you can perform the following tasks.
    • Create a role.
      1. On the Manage Roles page, click Create.

      2. In the Create Role dialog box that appears, configure the following parameters.
        1. Role: the name of the role. The name must be unique.
        2. Permission ID: the permission ID of the role.
        3. Status: specifies whether to enable the role.
        4. Description: the description of the role.
      3. After configuring the parameters, click Submit.
    • Grant the role permissions.
      1. On the Manage Roles page, find the target role and click Add Permission.
      2. On the Resources tab of the Manage Roles page, select permissions to be grant.

        After the permissions have been granted, the number of permissions granted is displayed in the Permissions column of the role on the Manage Roles page.

    • Modify a role.
      1. On the Manage Roles page, find the target role and click Modify.
      2. On the General tab of the Manage Roles page, you can modify the parameters of the role as needed.
      3. After modifying the parameters, click Save.
    • Delete a role
      1. On the Manage Roles page, find the target role and click Delete.
        Note The default role cannot be deleted.
      2. In the System Prompt message that appears, click OK.
    • Batch delete roles.
      1. On the Manage Roles page, select the target roles and click Batch Delete at the bottom.
        Note The default role cannot be deleted.
      2. In the System Prompt message that appears, click OK.