Polycom RealPresence Resource Manager System Operations Guide Using Access Control Lists in a Multi-Tenancy
270 Polycom, Inc.
Implementing Access Control Lists
Once you create an Access Control List for an endpoint type, all users of that
endpoint type must be included on an Access Control List in order to access
the RealPresence Resource Manager system for provisioning and
authentication.
It’s important to plan your implementation of Access Control Lists. Use the
following steps:
1 Determine an endpoint type of which you want to limit RealPresence
Resource Manager system access.
2 Determine which user groups you want to include in the Access Control
List.
If you do not create Access Control List for an endpoint type, then all users
with that endpoint type are allowed to access the RealPresence Resource
Manager for provisioning and authentication.
For example, if you create an Access Control List that includes RealPresence
Mobile systems, all users of RealPresence Mobile endpoints must now be
included on an Access Control List in order for their endpoints to be
provisioned and authenticate with your video network.
However, if you have not created an Access Control List for HDX systems, all
users with HDX systems managed by the RealPresence Resource Manager
system can have their endpoints be dynamically managed.
Using Access Control Lists in a Multi-Tenancy
Environment
You can associate an Access Control List with a specific area.
If you associate the Access Control List with a user group that is not in the
same area as the assigned area of the Access Control List, you will be
prompted to allow the RealPresence Resource Manager system to change the
area of the group to match the area of the list.
If you move re-assign an Access Control List to a different area, you are
prompted to allow the RealPresence Resource Manager system to change the
are of the group(s) to match the area of the list.
User groups associated with an Access Area List must reside in the same area
as the list.
