Home

Configuring RBAC general properties

  1. Open /usr/local/unravel/etc/unravel.properties. Search for and update the following properties; if you can't find them, add them. See RBAC properties for descriptions. Set com.unraveldata.login.mode to open, ldap or saml.

    com.unraveldata.login.mode=mode 
    com.unraveldata.rbac.enabled=true 
    com.unraveldata.rbac.default=userName 
    com.unraveldata.ngui.user.mode=extended  
    com.unraveldata.rbac.tagcmd=path_of_tag_file  
  2. You can exempt specific end-users from RBAC effects by adding them to the read-only admin group. Modify the following property, based upon com.unraveldata.login.mode.

    Open

    com.unraveldata.login.admins.readonly=user1,user2,user3

    LDAP

    com.unraveldata.login.admins.ldap.readonly=user1,user2,user3

    SAML

    com.unraveldata.login.admins.saml.readonly=user1,user2,user3