Administration > KVM Port Permissions > KVM Port Permissions Hierarchy

KVM Port Permissions Hierarchy
If you specify individual KVM port permissions or default permissions for users and groups, you need to understand the following information about how the system handles requests from a user who is trying to access a KVM port. The following series of decisions is made.
1.
Does the user have specific KVM port permissions that allow or deny access to the port?
Example for Decision 1
If user john is trying to access KVM port 4 and his account has port 4 in a list of ports with full permission, then john is given read/write and power management access.
If user jane is trying to access port 4 and her account has port 4 in a list of ports with no permission, then jane is denied access.
If users jim, joan, jerry, jill, joe, jennifer, jordan, jolanda, and jezebel are trying to access port 4 and do not have port 4 listed for any types of access, then their access requests are passed to decision
2.
Is the user included in a group with KVM port permissions that allow or deny access to the port?
Note: When a user is in more than one group, the most restrictive permission is used.
Example for Decision 2
If user jim is trying to access port 4 and he is a member of a group called linux_ca2 that has port 4 in a list of ports with read/write permissions, then jim is given read/write access.
If user joan is trying to access port 4 and she is in a group called linux_ca3 that has port 4 in a list of ports with no permission, then joan is denied access.
If jerry and jill are trying to access port 4 and are in a group called linux_ca4 that has no specific port permissions defined, then their access requests are passed to decision 3.
If joe, jennifer, jordan, jolanda, and jezebel are trying to access port 4 and are not in any group, then their access requests are passed to decision 3.
3.
Does the Generic User have specific KVM port permissions that allow or deny access the port?
Example for Decision 3
If user jerry is trying to access port 4 and the Generic User has port 4 in a list of ports with full access permissions, then jerry is given read writer and power management access.
If user jill is trying to access port 4 and the Generic User has port 4 in a list of ports with no access permissions, then jill is denied access.
If users joe, jennifer, jordan, jolanda, and jezebel are trying to access port 4 and the Generic User does not have port 4 listed for any type of access, then their access request are passed to decision 4.
4.
Does the user have a Default Permission that allows or denies access to the port?
If the user has no Default Permission, the user is under the Generic User’s default permission, and the request for access goes to decision 5.
Example for Decision 4
If user joe is trying to access port 4 and he has a Default Permission that allows read only access to ports, then joe is given read only access.
If user jennifer is trying to access port 4 and she has a Default Permission that allows no access to ports, then jennifer is denied access.
If users jordan, jolanda, and jezebel are trying to access port 4 and their Default Permissions are under the Generic User’s Default Permission, then their access requests are passed to decision 5.
5.
Does the user belong to a group that has a Default Permission that allows or denies access to the port?
Example for Decision 5
If user jordan trying to access port 4 is in a group called windows_ca1 that has a Default Permission of full, then jordan is given read/write and power management access.
If user jolanda trying to access port 4 is in a group called windows_ca2 that has a Default Permission of no access, then jolanda is denied access.
If user jennifer is not a member of any group with a Default Permission specified, then her access request is passed to decision 6.
6.
Note: If an access request gets this far, the Default Permission of the Generic User is the only permission that could apply.
Does the Default Permission for the Generic User allow access to the port?

Administration > KVM Port Permissions > KVM Port Permissions Hierarchy