Access Rights Workflow Dependencies
The Cisco Application Centric
Infrastructure (ACI) RBAC rules enable or restrict access to some or all of the fabric. For example, in order to configure a leaf switch for
bare metal server access, the logged in administrator must have rights to the infra
domain. By default, a tenant administrator does not have rights to the infra
domain. In this case, a tenant administrator who plans to use a bare metal server connected to a leaf switch could not complete
all the necessary steps to do so. The tenant administrator would have to coordinate with a fabric administrator who has rights
to the infra
domain. The fabric administrator would set up the switch configuration policies that the tenant administrator would use to
deploy an application policy that uses the bare metal server attached to an ACI leaf switch.