Nova authorization policies are used to set up Role-Based Access Control (RBAC). A Nova administrator configures authorization policies to specify who can perform certain actions within a tenant, and the conditions associated with those actions. They delegate the ability for users to do something, against something. Using the policy properties, you can get very granular in how you delegate access. For example, after assigning the Update Tenant User action to an authorization policy, you might edit the policy’s properties so delegates (i.e. members of the helpdesk) cannot read and/or edit certain information.
Here’s more information:
More about authorization policies
Setting up a policy
Delegating action(s) to a policy
Setting policy properties
Exporting or importing policies
Delegation examples

Print Friendly, PDF & Email