Security types

Security types define user permissions within product areas.

A security type is a collection of user permissions that are related to a product area. An agent type, for example, has permissions that are related to agents, while a component type defines permissions that are related to components. Initially, each product area has a type that is defined for it called the Standard type. The System Team has all permissions granted for all Standard security types for its Administrator role.

Product areas can have additional types, called subtypes, defined for them. When a subtype is created for a product area, it contains the same permissions as the Standard type. The edit permission for each area has additional permissions called subpermissions. You can grant all, some, or none of edit subpermissions for each subtype. Permissions and subpermissions are granted independently for each type within a role. For information about assigning permissions to roles, see Creating roles and assigning permissions.

When a team is assigned to an object, such as an agent, an associated security type is also specified. By managing security types, you can fine-tune user privileges. For example, by changing security types, a team can have one set of permissions for one agent, and another set for a different agent.

The following table lists the product areas with their available permissions. Because of the large number of edit subpermissions, they are provided in a separate column.

Table 1. Security types
Product area Available permissions Edit subpermissions
Agent
  • edit: modify and delete agents
  • view: access agents in the UI but cannot modify them
  • Add to Agent Pool: assign agents to agent pools
  • Create Resources: create agent-type resources
  • Delete: delete agents
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Impersonation: set up user impersonation for agents
  • Manage Properties: create and modify agent properties
  • Manage Teams: assign agents to teams
  • Manage Version Imports: import component versions with the agent
Agent pool
  • create: create agent pools
  • edit: modify and delete agent pools
  • view: access agent pools in the UI but cannot modify them
  • Create Resources: create agent pool resources
  • Delete: delete agent pools
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Impersonation: setup user impersonation for agent pools
  • Manage Properties: create and modify agent pool properties
  • Manage Teams: assign agent pools to teams
Application
  • create: create applications
  • edit: modify and delete applications
  • view: access applications in the UI but cannot modify them
  • Delete: delete applications
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Blueprints: create and modify blueprints
  • Manage Components: add and remove components
  • Manage Environments: create and modify environments
  • Manage Processes: create application processes
  • Manage Properties: create and modify application properties
  • Manage Snapshots: create and modify snapshots
  • Manage Teams: assign teams to applications
  • Run Component Processes: run processes that are defined for components that are attached to the application
Cloud connection
  • create: create connections
  • edit: modify and delete connections
  • view: access connections in the UI but cannot modify them
  • Delete: delete cloud connections
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Teams: assign teams to cloud connections
Component
  • create: create components
  • edit: modify and delete components
  • view: access components in the UI but cannot modify them
  • Delete: delete components
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Edit Components: create and modify components
  • Manage Configuration Templates: create configuration templates
  • Manage Processes: create component processes
  • Manage Properties: create component properties
  • Manage Teams: assign teams to components
  • Manage Versions: import component versions
Component template
  • create: create component templates
  • edit: modify and delete component templates
  • view: access component templates in the UI but cannot modify them
  • Delete: delete component templates
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Processes: create and modify component template processes
  • Manage Properties: create and modify component template properties
  • Manage Teams: assign teams to component templates
Environment
  • create: create environments
  • edit: modify and delete environments
  • view: access environments in the UI but not modify them
  • execute: run parent applications
  • Delete: delete environments
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Approval Processes: create and modify approvals and notifications
  • Manage Base Resources: add base resources to environments
  • Manage Properties: create and modify environment properties
  • Manage Teams: assign teams to environments
Process
  • create: create processes
  • edit: modify and delete processes
  • view: access process definitions in the UI but cannot modify them
  • execute: run processes
  • Delete: delete generic processes
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Properties: create and modify generic process properties
  • Manage Teams: assign teams to generic processes
Resource
  • create: create resources
  • edit: modify and delete resources
  • view: access resources in the UI but cannot modify them
  • Delete: delete resources
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Children: create, modify, and delete resource hierarchies
  • Manage Impersonation: set up user impersonation for agent and agent pool resources
  • Manage Properties: create and modify resource properties
  • Manage Teams: assign teams to resources
  • Map to Environments: assign resources to application environments
Resource template
  • create: create resource templates
  • edit: modify and delete resource templates
  • view: access resource templates in the UI but cannot modify them
  • Delete: delete resource templates
  • Edit Basic Settings: edit configuration settings on the Basic Settings panel
  • Manage Resources: create, modify, and delete resource hierarchies
  • Manage Teams: assign teams to resource templates

Feedback