DocsICP FilingConsole
官方文档
首页

View and export user and asset authorization relationships

更新时间:
复制 MD 格式
产品详情
我的收藏

Bastionhost provides several ways to authorize access to assets: for individual users, for user groups, and through authorization rules. This topic describes how to view authorization details, find assets and users linked to an authorization rule, and export these relationships.

Prerequisites

You have configured the required authorizations. For more information, see Authorize assets and asset accounts, Authorize asset groups, and Authorization rules.

View authorization relationships

User and asset authorization

  1. Log on to the Bastionhost console. In the top navigation bar, select the region where your Bastionhost instance is located.

  2. In the list of Bastionhost instances, find the target instance and click Manage.

  3. In the navigation pane on the left, choose Users > Users.

  4. On the Users page, view the user authorization relationships.

    • In the user list, you can view the number of hosts, databases, and asset groups authorized for each user.

      image

    • Click the name of a user to view their authorized assets and the permissions inherited from user groups and authorization rules.

      image

User group authorization

  1. Log on to the Bastionhost console. In the top navigation bar, select the region where your Bastionhost instance is located.

  2. In the list of Bastionhost instances, find the target instance and click Manage.

  3. In the navigation pane on the left, choose Users > User Groups.

  4. On the User Groups page, view the user group authorization details.

    • In the user group list, you can view the number of hosts, databases, and asset groups authorized for each user group.

      image

    • Click the name of a user group to view its list of authorized assets.

      image

Assets and users in authorization rules

  1. Log on to the Bastionhost console. In the top navigation bar, select the region where your Bastionhost instance is located.

  2. In the list of Bastionhost instances, find the target instance and click Manage.

  3. In the navigation pane on the left, click Authorization Rules.

  4. On the Authorization Rules page, click the name of an authorization rule. On the Asset/User tab, you can then view the assets and users associated with the rule.

    image

Export user and asset authorization relationships

  1. Log on to the Bastionhost console. In the top navigation bar, select the region where your Bastionhost instance is located.

  2. In the list of Bastionhost instances, find the target instance and click Manage.

  3. In the navigation pane on the left, choose Users > Users.

  4. On the Users page, click Export Authorization Data.

    A .csv file containing the authorization data is downloaded to your computer.

Previous:Manage an authorization ruleNext:Control policy