The Product requires a second user authentication once a user starts the NMS Client application. The software asks once again for a user name and password, which must be one of the Linux user accounts authorized for use with the Product. We recommend to create these additional Linux user accounts using the Product provided command “nemuser …” as documented in section “Creation of FOXMAN-UN User Accounts” of the [1KHW002414] User Manual – FOXMAN-UN under Linux. This command will set the correct group permissions for the secure use of the Product.

The NMS administrator “nemadm” is a system account without login which runs the Product application and is the owner of the installed file system of the Product.

The NEM security administrator is a Linux account which needs to be created before installing the Product. The username will need to be entered during Product installation. The NEM security administrator will then be able to assign Product specific access permissions to other Linux accounts. The assignment of access rights to a user is based on roles. Predefined roles can be used to restrict access to the system for different users based on their tasks in the system. Custom roles can also be created by a system administrator.

The definition of the roles and domains via Role-Based Access Control (RBAC) is part of the security setup. It is well documented in the section “Security Configuration” of the [1KHW002412] User Manual – FOXMAN-UN Help and further detailed in the application note [1MRC000110] FOXMAN-UN Role-based Access Control (RBAC).

Only the required functions and domains should be authorized for each user.