Access rights to newly imported actions

When you add a new custom action or external script action, TrueSight Network Automation ensures that you are able to execute the new action. If you possess full network rights, then you already have access to all actions. However, if you have lesser rights, TrueSight Network Automation creates a new role, grants access to the new action in each accessible realm, and associates you with the role. If your XML file contains multiple actions, one role is created per action.

The new role is named Access Only Action followed by the action name. For example, for a newly imported action named Show Highlights, the automatically generated role name is Access Only Action: Show Highlights. An event is logged to track the role creation activity.

Since you are importing a new adapter, it is considered to be in a test phase, during which you develop some code, import it, try it out, update the code, re-import, and repeat the cycle as needed until the code is complete. Thus, only you are granted the right to execute the action, and other users are not able to interfere with your work. Once your testing is done, you should incorporate action access rights into your main set of roles and into your group ACLs, and delete the Access Only Action role. Or, you may choose to retain the role and associate other users with it.