Required NDS rights for DNS/DHCP
Previous
Page Next Page
To manage Novell DNS/DHCP Services, administrators require sufficient NDS rights, depending onthe type of operation to be performed. Administrators who will add new objects and modify existing objects require Add rights to the
appropriate NDS container object. The following table summarizes rights requirements for creating new configuration objects and modifying existing objects. (This is what is needed for the initial install and configuration of the product.)DNS/DHCP Objects Object Rights All Property Rights
Locator object Browse Supervisor
Group object Browse Supervisor
Existing objects Supervisor Supervisor
Administrators who manage a given set of DHCP subnets or DNS zones require rights to create or delete IP addresses, ranges of addresses, or resource record sets. The following table lists the rights requirements of administrators who perform these tasks. (This is what is needed for the day-to-day
use of the product.)DNS/DHCP Objects Object Rights All Property Rights
Locator object Browse Read
Group object Browse Read
Existing objects Browse, Create, Delete Supervisor
Administrators or users who need to view DNS/DHCP configuration require rights as summarized inthe following table.
DNS/DHCP Objects Object Rights All Property Rights
Locator object Browse Read
Group object Browse Read
Existing objects Browse Read
Usually you have the DNS-DHCP Locator Object and the DNS-DHCP Group Object at the top of he tree in the Organization (i.e. O=NOVELL) container. The DNS-DHCP Locator Object is used
by the console to know where all the DNS-DHCP objects are in the tree. The DNS-DHCP Group Object controls security. You can make certain users have full rights over the DNS-DHCP on the tree without giving them God rights by making them part of the DNS-DHCP Group Object.