Security types define user permissions within product areas.
A security type is a collection of user permissions that are related to a product
area. An agent type, for example, has permissions that are related to agents, while a component type
defines permissions that are related to components. Initially, each product area has a type that is
defined for it called the Standard type. The System Team has all permissions granted for all
Standard security types for its Administrator role.
Product areas can have additional types, called subtypes, defined for them. When a
subtype is created for a product area, it contains the same permissions as the Standard type. The
edit permission for each area has additional permissions called subpermissions. You can grant all,
some, or none of edit subpermissions for each subtype. Permissions and subpermissions are granted
independently for each type within a role. For information about assigning permissions to roles, see
Creating roles and assigning permissions.
When a team is assigned to an object, such as an agent, an associated security type is also
specified. By managing security types, you can fine-tune user privileges. For example, by changing
security types, a team can have one set of permissions for one agent, and another set for a
different agent.
The following table lists the product areas with their available permissions. Because of the
large number of edit subpermissions, they are provided in a separate column.
Table 1. Security types| Product area |
Available permissions |
Edit subpermissions |
| Agent |
- edit: modify and delete agents
- view: access agents in the UI but cannot modify them
|
- Add to Agent Pool: assign agents to agent pools
- Create Resources: create agent-type resources
- Delete: delete agents
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Impersonation: set up user impersonation for agents
- Manage Properties: create and modify agent properties
- Manage Teams: assign agents to teams
- Manage Version Imports: import component versions with the agent
|
| Agent pool |
- create: create agent pools
- edit: modify and delete agent pools
- view: access agent pools in the UI but cannot modify them
|
- Create Resources: create agent pool resources
- Delete: delete agent pools
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Impersonation: setup user impersonation for agent pools
- Manage Properties: create and modify agent pool properties
- Manage Teams: assign agent pools to teams
|
| Application |
- create: create applications
- edit: modify and delete applications
- view: access applications in the UI but cannot modify them
|
- Delete: delete applications
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Blueprints: create and modify blueprints
- Manage Components: add and remove components
- Manage Environments: create and modify environments
- Manage Processes: create application processes
- Manage Properties: create and modify application properties
- Manage Snapshots: create and modify snapshots
- Manage Teams: assign teams to applications
- Run Component Processes: run processes that are defined for components
that are attached to the application
|
| Cloud connection |
- create: create connections
- edit: modify and delete connections
- view: access connections in the UI but cannot modify them
|
- Delete: delete cloud connections
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Teams: assign teams to cloud connections
|
| Component |
- create: create components
- edit: modify and delete components
- view: access components in the UI but cannot modify them
|
- Delete: delete components
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Edit Components: create and modify components
- Manage Configuration Templates: create configuration templates
- Manage Processes: create component processes
- Manage Properties: create component properties
- Manage Teams: assign teams to components
- Manage Versions: import component versions
|
| Component template |
- create: create component templates
- edit: modify and delete component templates
- view: access component templates in the UI but cannot modify them
|
- Delete: delete component templates
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Processes: create and modify component template processes
- Manage Properties: create and modify component template properties
- Manage Teams: assign teams to component templates
|
| Environment |
- create: create environments
- edit: modify and delete environments
- view: access environments in the UI but not modify them
- execute: run parent applications
|
- Delete: delete environments
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Approval Processes: create and modify approvals and
notifications
- Manage Base Resources: add base resources to environments
- Manage Properties: create and modify environment properties
- Manage Teams: assign teams to environments
|
| Process |
- create: create processes
- edit: modify and delete processes
- view: access process definitions in the UI but cannot modify them
- execute: run processes
|
- Delete: delete generic processes
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Properties: create and modify generic process properties
- Manage Teams: assign teams to generic processes
|
| Resource |
- create: create resources
- edit: modify and delete resources
- view: access resources in the UI but cannot modify them
|
- Delete: delete resources
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Children: create, modify, and delete resource hierarchies
- Manage Impersonation: set up user impersonation for agent and agent pool
resources
- Manage Properties: create and modify resource properties
- Manage Teams: assign teams to resources
- Map to Environments: assign resources to application environments
|
| Resource template |
- create: create resource templates
- edit: modify and delete resource templates
- view: access resource templates in the UI but cannot modify them
|
- Delete: delete resource templates
- Edit Basic Settings: edit configuration settings on the Basic
Settings panel
- Manage Resources: create, modify, and delete resource hierarchies
- Manage Teams: assign teams to resource templates
|