RBAC permissions for patch management
To create Patching Jobs and to deploy patches, the patch administrator must be assigned a role that includes the necessary permissions.
To facilitate division of responsibilities, you can assign permissions to one role or split between several roles.
RBAC permissions for managing patches
Ensure that the patch administrator has the following permissions.
Defining permissions for | Gives the user the ability to |
---|---|
AIXPatchSoftware.Read | Perform all operations related to Patch Analysis Jobs (only Patch Analysis, not Patch Remediation) |
AIXPatchSoftware.Read | Perform all operations related to Patch Remediation Jobs (including their Deploy Jobs) |
PatchGlobalConfig.Read | Modify Patch Global Configuration settings |
ACLPolicy.* (This permission is only required if ACL policies used in catalog must be created because they do not already exist). | Perform all operations related to Catalog Update Job for Windows/Solaris/Linux/AIX |
Comments
Log in or register to comment.