Create or Modify Model Server Rule Dialog

In the central user management, you create or change a model server rule.

Purpose

In this dialog, you define a model server rule for a group or user. Model server rules are used to determine whether or not a user can carry out administrative tasks and in which single sign-on data repositories.

Model server rules control authorizations for the following actions:

Log-in as repository administrator (no password required)
Start a model server (also using the command line)
Close a model server (also using the command line)

Prerequisites

In order to call the central user management on the main license server in the administration program and use its functions, you must be logged-in to the license server as an administrator or your user must have the Manage Users right (normally as a group member).

Call

In the Groups tab in the Groups table or in the User tab in the User table, select the entry which you want to create or edit a model server rule for.

To create a model server rule, select Users>New>Model Server Rule (Ctrl+Shift+S).
To change a model server rule, select the model server rule and select Users>Edit>Properties (Enter).

Structure

The dialog contains the following drop-down lists and OK and Cancel default buttons.

Access

Access sets whether the rule allows or denies access to the given models.
Project

A project license server's name or pattern can be selected from the list or entered directly. It is identified using Name.Port. The list of project license servers comes from project license servers which are currently running and available.
Repository

A repository's name or pattern can be selected from the list of repositories or entered directly. The list of repositories comes from model servers which are currently running and available on the project license servers set.

Creating or Changing Model Server Rules

Context

Preferably, you create model server rules for administrator groups. All group members already possess rules via their affiliation to a group in this case.

Model server rules are used to determine whether or not a user can carry out administrative tasks and in which single sign-on data repositories.

In each case, you use a name or pattern to define the project license servers and repositories which logging-in as a repository administrator should be possible for. Only the asterisk (*) is available for the formulation of patterns. You use precise specifications about project license servers and repositories to restrict the applicability of the rule.

Attention

Please note that a newly created rule initially gives the group members unrestricted access to all repositories, since the asterisk (*) is the default setting for all drop-down lists.

Note

Please note that due to the rule evaluation steps, the order of rules with an overlapping applicability is decisive and that direct user rules always take priority over group rules.

How to proceed

In the Groups tab in the Groups table or in the User tab in the User table, select the entry which you want to create or edit a model server rule for.
To create a model server rule, select Users>New>Model Server Rule (Ctrl+Shift+S).

A dialog appears.
To change a model server rule, select the model server rule and select Users>Edit>Properties (Enter).

A dialog appears.
To define a rule that allows access, select the Rule grants access entry in the Access drop-down list.
To define a rule that excludes access, select the Rule denies access entry in the Accessdrop-down list.

A sensible exclusion rule requires a corresponding, accessible enabling rule for the entry(group or user) in another group.
Use a name or pattern in the other drop-down lists to determine whether or not a user can carry out administrative tasks and in which single sign-on data repositories.
Confirm the selection with OK.

You have defined a model server rule. Then arrange the rules correctly in order.