Configuring after onboarding

During the onboarding process for SecOps Response, an administrative role is specified. Users belonging to that role are considered to be endpoint administrators. They can perform administrative tasks to ensure the SecOps Response environment is functioning smoothly.

Configuration taskRelated topics

Logging on.

Logging on as an endpoint administrator

Manage security groups. A security group is a group of users that inherit a set of restrictions and permissions.

  • For BSA, an endpoint administrator can import roles from BSA and convert them into security groups. An administrator can also create new security groups. In addition, an endpoint administrator can define some default values in BSA that are used when you define operations in SecOps Response.
  • For BNA, an endpoint administrator can import realms from BNA and convert them into security groups in SecOps Response. An administrator can also create new security groups.  
  • For SCCM, an endpoint administrator can import Active Directory groups that are associated with security roles in SCCM and convert those Active Directory groups into security groups in SecOps Response. An administrator can also create new security groups.  

Managing security groups for BMC BladeLogic Server Automation

Managing security groups for BMC Network Automation

Managing security groups for SCCM

View and manage connections to endpoint managers.

  • For BSA, an endpoint administrator can view connection information and modify default values for depot locations, jobs, and deploy templates.
  • For BNA, an endpoint administrator can only view connection information.
  • For SCCM, an endpoint administrator can only view connection information.

Viewing and modifying information about the BMC BladeLogic Server Automation connection

Viewing information about the BMC Network Automation connection

Viewing information about the SCCM connection

View user information.

User permissions are based on the security groups to which a user belongs. All user information is view-only.

Viewing user information

Configure Data Refresh.

The Data Refresh capability watches the connectors and regularly updates any of their data that is used in SecOps Response.

Configuring Data Refresh

View information for external connectors and update information obtained using BMC Discovery.

Endpoint administrators can only view information used to set up connections for BMC Discovery and BMC Atrium Orchestrator. In addition, endpoint administrators can manually refresh BMC Discovery data.

Viewing and using connections to external products

Provide service level agreement information.

Both endpoint administrators and non-administrative users can specify the service level agreements (SLAs) applicable to your organization.

Providing service level agreement information

Viewing license usage.

Download a report showing your current license usage.

Viewing license usage

Managing tags.

Tags let you enrich data associated with assets. A tag is a key/value pair. For example, an asset tag could be called Owner and its values could be defined as various asset owners. 

You can import tag data in a comma separated value (CSV) format.

Managing tags

Was this page helpful? Yes No Submitting... Thank you

Comments