Overview
NetDB controls access to records through record type rights and Group rights. There are 6 record types in NetDB: Group, Domain, User, Admin Team, Network and Node. There are several hundred Groups that are loosely organized around departments.
All NetDB Users can look at all NetDB records; but only Users with both appropriate record and Group rights can modify or delete a record. Users with appropriate record rights can use an existing record as a template. Below is a table summarizing these rights:
| Have Record Rights | Don't Have Record Rights | |
|---|---|---|
| Have Group Rights | Get Info, Modify, Delete, Use as Template | Get Info |
| Don't Have Group Rights | Get Info, Use as Template | Get Info |
Special Cases
- To assign a name within a Domain, the User must belong to the same Group as the Domain and have either Node or Network rights. For example, to add the host "alpha" in the "stanford.edu" Domain, the User must be in the Group "Stanford" (which is the Group for "stanford.edu") and have Node record rights.
- To assign addresses within an address space, the User must belong to the same Group as the address space and also have Node rights. For example, to assign IP address 171.64.60.10, the User must belong to Group "Biology" (which is the Group for address space "171.64.60.0/24" which is in the Network record "Biology-Net") and also have Node record rights.
Standard Access
The table below shows how NetDB access is commonly assigned:
| Record Rights | Group Rights | |
|---|---|---|
| Local Network Administrator (LNA) | Node | specific Groups needed by User |
| Computer Resource Center (CRC) | Node | All Groups |
| Networking Systems | All Records | All Groups |