Setting up the Security whats correct and whats not
Jason_Tayler
Customer IT Monkey ✭
Hi guys/gals
Is there any documentation on creating the security for this product, I'm having trouble for a restricted user cannot see the deployment scopes or app/package templates, although that group has been given view rights to the template
0
Best Answer
-
F_Christiansen
Cireson Dev Advanced IT Monkey ✭✭✭
Hi Jason,
The admin guide was supposed to have been released, we are looking into making that available for download real soon.
Until that, you can certainly ask here (well, you can always ask here :-))
You have various ways of securing objects.
You have set up the Area Rights so the user has access the page.
Now to secure a Software View, you will have to select the Software Views the user/groups should be able to see, right-click and select Permissions. Then give the group View permissions.
This will give the user permission to see the View.
To have him see Software Packages, you must decide if you want him to see all packages or only individual items.
For having him see all software items, select the Global Right "Packages" in the Security Rights pane and select (at least) the View permission checkbox. Then Save.
For only having him list individual software items, select the software item, right-click and select Permissions. Then give him appropriate permissions.
For v2 of the product, OSD Task Sequences has its own, named Task Sequence in the Global Rights list.
Note that you can mix Global Rights with Instance Permissions, so you can give your users Global Rights to e.g. Modify and Delete, while you control which software items to see on Instance permissions.
But not the other way around, it the user has View in Global Rights for Packages, you cannot revoke that the a single package.
Hope this helps and if you have other questions, just let us know.
Best regards
Flemming Appelon Christiansen5
Answers
The user guide hasn't been released as yet. Firstly for the deployment scope (under security settings), I assume you've given rights to the relevant role. After that have you created views (under General settings)? You have to do both even though they almost look the same- the view is what you can see- the deployment scope is what you have access to.
The package and deployment templates should be available as long as you have provided the role access to deploy software (under Security Settings > Security Rights > Area Rights). Hope that helps for starters...
Davis
Thanks Davis
yep that makes sense, I can now see the deployment templates etc
however now the user cannot see the software view.
group has view access to this view and security is enabled to allow the users to view software
the software tab can bee seen however lists no packages can be found
the user can only see this view and is the only view that can be selected
any help appreciated
The admin guide was supposed to have been released, we are looking into making that available for download real soon.
Until that, you can certainly ask here (well, you can always ask here :-))
You have various ways of securing objects.
You have set up the Area Rights so the user has access the page.
Now to secure a Software View, you will have to select the Software Views the user/groups should be able to see, right-click and select Permissions. Then give the group View permissions.
This will give the user permission to see the View.
To have him see Software Packages, you must decide if you want him to see all packages or only individual items.
For having him see all software items, select the Global Right "Packages" in the Security Rights pane and select (at least) the View permission checkbox. Then Save.
For only having him list individual software items, select the software item, right-click and select Permissions. Then give him appropriate permissions.
For v2 of the product, OSD Task Sequences has its own, named Task Sequence in the Global Rights list.
Note that you can mix Global Rights with Instance Permissions, so you can give your users Global Rights to e.g. Modify and Delete, while you control which software items to see on Instance permissions.
But not the other way around, it the user has View in Global Rights for Packages, you cannot revoke that the a single package.
Hope this helps and if you have other questions, just let us know.
Best regards
Flemming Appelon Christiansen
Thanks, I have done this and setup a software view and limited to a few rules lets just say all Microsoft as an example
the group has view permissions to this software view.
no global software rights
in the portal the team can see the software view listed but I get no software packages found.
I have tried to set the permissions on 1 package/application however still nothing is viewed.
if I give them global software view rights they still are unable to see anything listed under, the view I created or the default software view , the same message no software packages found..
I know I'm doing something wrong and I have tried different things but just cannot get the software view to show as expected. I cannot have some teams deploying certain software even if they think they know better
permissions are working as expected
missed to global packages view rights
Glad that they got you going. If you would be so kind as to mark the proper response as the answer, that way we'll know it is closed, and others will know what the answer was for you when they search for it.
Thanks,
Wally