The following table describes the user access levels available for systems management capabilities:
| User Access Group | Description |
|---|---|
| Monitor | The monitor-level user has read-only access to most types of data. (Only manager-level users can view or change trusted hosts configurations). Typically, users in this group monitor the status of the server. |
| Admin | The administrator-level user can perform a limited set of server administration tasks. This user cannot manage users or security features or perform any potentially destructive tasks. |
| Manager | The manager-level user performs all functions on the server including user and security management. Only managers can create local users and map directory service groups to local groups. |
| Service | The service account is for internal use or for service technicians only. Service users can perform all functions that managers can perform, with the exception of access control functionality (updating users, mapping directory services groups, configuring directory services, managing trusted hosts). If a technician needs to work on a system, a manager typically creates a temporary service account for the technician to use. |
Creating the Initial Manager Account
Mapping Directory Service Groups
Configuring Directory Services