Custom user role.

Question

Hello,&nbsp;
I have operators who sometimes need to manually enable some nodes, but they can't sync the config.
This was raised in the past: https://devcentral.f5.com/questions/operator-user-role-in-active-passive-ltm but I can't find any new references / examples. Does anyone have any experience with setting up custom rule? I need Operator permissions with syncing the config capabilities.&nbsp;
Regards
Mariusz&nbsp;

amolari · Answer

It seems no progress have been made yet on the BIGIP software in this aspect. The RFE referenced in the other thread is still not implemented. Maybe as a workaround, some script with iControl may be implemented for those operators?

brad_parker · Answer

Right now, the only true RBAC with BigIP is to use Big-IQ or some other custom iControl based application.  I've been told it won't initially exist in 12.0 either.&nbsp;

mariusz_b · Answer

Thank you for your updates. We are not going to go for BIG-IQ for now, so I'll find some another workaround. I was thinking to use Crontab on some Linux server, to synchronize the config every X number of hours on LTMs.&nbsp;
Many thanks&nbsp;

Forum Discussion

Custom user role.

3 Replies

Recent Discussions

F5 Rseries R2600 Tenant sizing

Can iRule mask the payload content on event logs of security

Pricing when used with aws waf

iRule help masking IBM host URL/URI

Need advise to setup a policy on F5

Related Content

User roles per partition: are multiple possible?

Customizing APM end user login page with APM Advanced Customization Templates

F5 Distributed Cloud - Customer Edge Site - Deployment & Routing Options

iControl REST Fine-Grained Role Based Access Control

DEVCENTRAL END-USER LICENSE AGREEMENT