Role-based access control

Role-based access control defines the resources and permissions that are available to IBM Spectrum Protect Plus user accounts.

Role-based access provides users with access to only the features and resources that they require. For example, a role can allow a user to run backup and restore jobs for virtualized systems, but does not allow the user to complete administrative tasks such as creating or modifying user accounts.

To complete the tasks that are described in this documentation, the user must be assigned a role that has the required permissions. Ensure that your user account is assigned a role that has the required permissions before you start the task.

To set up and manage user access, see Managing user access.

Creating a superuser account with the SUPERUSER role

The SUPERUSER role provides the user with access to all IBM Spectrum Protect Plus functions. The SUPERUSER role can be assigned to only one account and that account is referred to as the superuser account.

The IBM Spectrum Protect Plus administrator is prompted to create the superuser account the first time that the administrator logs on to IBM Spectrum Protect Plus. This account is automatically assigned the SUPERUSER role.

For the steps required to set the username and password for the superuser account, see Start IBM Spectrum Protect Plus.

To manage the superuser account after it is created, see Managing the superuser account.