Use authorization rules to grant multiple users access to multiple assets and define a validity period. This streamlines user and asset management.
Prerequisites
You have added assets and users to Bastionhost. For more information, see Add hosts and Manage users.
Procedure
Log on to the Bastionhost console. In the top navigation bar, select the region where your Bastionhost instance is located.
In the list of Bastionhost instances, find the target instance and click Manage.
-
In the left-side navigation pane, click Authorization Rules.
-
On the Authorization Rules page, click Create Authorization Rule.
-
In the Create Authorization Rule panel, configure the parameters as described in the following table and click Create Authorization Rule.
Parameter
Description
Authorization Rule Name
The name of the authorization rule. The name must meet the following requirements:
-
Must be 1 to 128 characters in length.
-
Cannot start with a special character.
-
Allowed special characters: periods (.), underscores (_), hyphens (-), and spaces.
Validity Period
Specifies the start and end dates and times for the rule's active period.
Remarks
Optional notes about the authorization rule.
-
-
In the success message that appears, click Associate Assets and Users.
-
On the Asset/User tab, add assets (or asset groups) and users (or user groups) to the rule.
Related documents
Manage an authorization rule: Modify the settings of an authorization rule or delete a rule that has expired or is no longer needed.