Topic
  • 5 replies
  • Latest Post - ‏2014-04-17T19:51:03Z by Tim.Rice
superhoop91
superhoop91
1 Post

Pinned topic User with limited ability (Read Access , view actions)

‏2014-03-12T12:38:06Z |

HI All,

 

Using TEM 8.2.1175.

 

I need to create a user that has rights similar to 'read only' and can view others peoples actions and results.

 

Is that possible? If so, how can I achieve this ?

 

Thanks

Superhoops

  • MattPeterson
    MattPeterson
    17 Posts

    Re: User with limited ability (Read Access , view actions)

    ‏2014-03-12T13:49:56Z  

    There is not really a read only option in the console. You can limit users to the fixlets, tasks and analysis they can see by only allowing them access to certian sites. There are a couple of problems with this, one is that if your user doesn't have access to site they will also not see the results of any of the analysis in that site. Another problem being that all users must have access to the BESSupport site, you would need to globaly hide any fixlets/tasks that you do not want them to have access to.

    I would suggest looking into "4 eyes approval". This will allow you to create operators that are not able to take any actions unless an "approver" stops over and enters there password. This way the operator to could access any of the sites, but would not be able to take action without the appover.

    https://www.ibm.com/developerworks/community/wikis/home?lang=en#!/wiki/Tivoli%20Endpoint%20Manager/page/Four%20Eyes%20Approval%20Capability

  • MattPeterson
    MattPeterson
    17 Posts

    Re: User with limited ability (Read Access , view actions)

    ‏2014-03-12T13:52:27Z  

    There is not really a read only option in the console. You can limit users to the fixlets, tasks and analysis they can see by only allowing them access to certian sites. There are a couple of problems with this, one is that if your user doesn't have access to site they will also not see the results of any of the analysis in that site. Another problem being that all users must have access to the BESSupport site, you would need to globaly hide any fixlets/tasks that you do not want them to have access to.

    I would suggest looking into "4 eyes approval". This will allow you to create operators that are not able to take any actions unless an "approver" stops over and enters there password. This way the operator to could access any of the sites, but would not be able to take action without the appover.

    https://www.ibm.com/developerworks/community/wikis/home?lang=en#!/wiki/Tivoli%20Endpoint%20Manager/page/Four%20Eyes%20Approval%20Capability

  • Steve_M02
    Steve_M02
    2 Posts

    Re: User with limited ability (Read Access , view actions)

    ‏2014-04-09T12:57:31Z  

    Could look into setting up user(s) in Web Reports which is read-only.

  • jgstew
    jgstew
    56 Posts

    Re: User with limited ability (Read Access , view actions)

    ‏2014-04-09T14:02:21Z  
    • Steve_M02
    • ‏2014-04-09T12:57:31Z

    Could look into setting up user(s) in Web Reports which is read-only.

     

    Either Web Reports or 4 eyes approval are the only options for this at the moment. The 4 eyes approval option is the only one that will work through the console if web reports is insufficient.

     

    I have never used 4 eyes approval, but I suspect if no one is set in the "approvers" role, then it would make the account effectively read only.

  • Tim.Rice
    Tim.Rice
    40 Posts

    Re: User with limited ability (Read Access , view actions)

    ‏2014-04-17T19:51:03Z  
    • jgstew
    • ‏2014-04-09T14:02:21Z

     

    Either Web Reports or 4 eyes approval are the only options for this at the moment. The 4 eyes approval option is the only one that will work through the console if web reports is insufficient.

     

    I have never used 4 eyes approval, but I suspect if no one is set in the "approvers" role, then it would make the account effectively read only.

    Google "Tivoli Endpoint Manager Computer Browser".

    It's a web accessible "console" that uses Web Reports access controls.

    Don't use "Bricks", that's a full on Web Console that Lee Wei has been working on.  It's NOT read-only.