Before Bastionhost users can perform O&M operations on hosts, the administrator must create O&M rules to authorize the users to perform O&M operations on specific hosts and host accounts. This topic describes how to create O&M rules.

Authorize a user to manage hosts

To authorize a user to manage hosts, perform the following steps:

  1. Log on to your bastion host. For more information, see Log on to a bastion host.
  2. In the left-side navigation pane, choose Users > Users.
  3. Find the user whom you want to authorize to manage hosts and click Authorize Hosts in the Actions column.
    Authorize a user to manage hosts
  4. On the Authorized Hosts tab, click Authorize Hosts.
  5. In the Authorize Hosts panel, select one or more hosts you want to authorize the user to manage and click OK.

Authorize the accounts of a single host for a user

To authorize the accounts of a single host for a user, perform the following steps:

  1. Log on to your bastion host. For more information, see Log on to a bastion host.
  2. In the left-side navigation pane, choose Users > Users.
  3. Find the user whom you want to authorize to manage hosts and click Authorize Hosts in the Actions column.
    Authorize a user to manage hosts
  4. On the Authorized Hosts tab, click the account name or None. Authorize accounts in the Authorized Accounts column.
    Authorize the accounts of a single host
  5. In the Select Accounts panel, select one or more accounts and click Update.
    Note If no account is created on the host, you can click Create Host Account in the Select Accounts panel to create an account.

Authorize the accounts of multiple hosts for a user

To authorize the accounts of multiple hosts for a user at a time, perform the following steps:

  1. Log on to your bastion host. For more information, see Log on to a bastion host.
  2. In the left-side navigation pane, choose Users > Users.
  3. Find the user whom you want to authorize to manage hosts and click Authorize Hosts in the Actions column.
    Authorize a user to manage hosts
  4. On the Authorized Hosts tab, select the hosts whose accounts you want to authorize for the user and choose Batch > Batch Authorize Accounts. Authorize the accounts of multiple hosts for a user
  5. In the Batch Authorize Accounts panel, specify Accounts.
    Batch Authorize Accounts
    Note When you want to authorize the accounts of multiple hosts for a user at a time, you can select only one host account at a time.
  6. Click Update.