Impersonation

When BladeLogic Operations Manager instructs an RSCD agent to carry out a configuration management operation on behalf of an RBAC user, the RBAC user and role are mapped to a user identity recognized by the operating system hosting the RSCD agent - we refer to these mapped user identities as automation principals. The RSCD agent assumes the privileges of the mapped automation principal for the duration of the agent session. User mapping is central to how RSCD enforces RBAC policies on agents. The Impersonation name space contains commands for managing automation principals and associating them with RBAC Roles. For example, you can define a new Windows automation principal called "Domain Administrator" and associate it with the BLAdmins role.

This name space contains the following commands:

Was this page helpful? Yes No Submitting... Thank you

Comments