IBM Support

Understanding Role Based Access Control (RBAC) in Log Analysis

How To


Summary

Role Based Access Control (RBAC) feature was introduced in IBM Operations Analytics – Log Analysis 1.3.1 to meet the needs of multiple enterprise customers. The feature was implemented with read permissions on data source artifacts and is used to control access to saved searches, dashboards and charts.

In Log Analysis, user authentication is set up using the user registry running on WebSphere Liberty (Liberty) or the LDAP server configured with Liberty. Once the user is authenticated, access to the search or admin page is controlled by mapping user groups to Log Analysis security roles (UnityUser, UnityAdmin). These are defined in the server.xml and unityConfig.xml files. Beyond access to the page, the objects displayed on the page are controlled by the roles and permissions assigned to users.

Log Analysis, when installed, configures the administrative user unityadmin with special privileges and access to all data in the system. One default role unityusers is also created and all users by default are given membership to this role.

Document Location

Worldwide

[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSPFMY","label":"IBM Operations Analytics - Log Analysis"},"ARM Category":[{"code":"a8m50000000L0qYAAS","label":"Log Analysis"},{"code":"a8m50000000CcMmAAK","label":"Log Analysis-\u003EUI-\u003EDataType Configurations-\u003EAdmin UI-\u003ERoles UI"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Version(s)","Line of Business":{"code":"LOB77","label":"Automation Platform"}}]

Log InLog in to view more of this document

This document has the abstract of a technical article that is available to authorized users once you have logged on. Please use Log in button above to access the full document. After log in, if you do not have the right authorization for this document, there will be instructions on what to do next.

Document Information

Modified date:
19 June 2020

UID

ibm16236236

Page Feedback