Permissions control access to objects and data in the ObjectServer. By combining one or more permissions into roles, you can manage access quickly and efficiently.
Each user is assigned to one or more groups. You can assign permissions to each group to perform actions on database objects by granting one or more roles to the group. You can create logical groupings such as super users or system administrators, physical groupings such as London or New York NOCs, or any other groupings to simplify your security setup.
For example, creating automations requires knowledge of Tivoli Netcool/OMNIbus operations and the way that a particular ObjectServer is configured. You do not typically want all of your users to create or modify automations. One solution is to create a role named AutoAdmin, with permissions to create and modify trigger groups, files, SQL and external procedures, and signals. You can then grant that role to a group of administrators who will be creating and updating automations.
The security.sql script contains default groups and roles for different classes of users, such as operators and administrators. You can also use this script as a template to create your own groups and roles.
Users, groups, and roles can be configured by using Netcool/OMNIbus Administrator or ObjectServer SQL.