Skip to Content

Installer

This scenario describes the security settings to be defined for an administrator who only executes agent rollouts across the network.

  1. Log on to the console with a superadministrator login.
  2. Then go to the Global Settings and the Administrator Groups node.
  3. Create a new group called Installer .
  4. Select the following Security Profile node and in the Capabilities tab.
  5. Click the Edit > Properties properties.pngmenu item.
  1. In the Modify Capabilities tab select the following capabilities:
    • All Modify Capabilities capabilities
    • All Device capabilities
    • View and Manage Device Groups capabilities - no Populate capability
  2. Click OK to confirm and close the window.
  3. Then go to the Static Objects tab and via the Properties pop-up window add the following static objects:
    • Device Groups top node with Read and Assign Access: Allow and Write Access: Deny
    • Rollouts top node with Read, Write and Assign Access: Allow
  4. In the Dynamic Objects tab add the following dynamic objects via the Properties pop-up window:
    • All Devices and All Device Groups queries with Read Access: Allow and Write and Assign Access: Deny
    • All Rollout Folders and All Rollouts queries with Read, Write and Assign Access: Allow .InformationThese queries can be found in the BMC Client Management database folder.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Client Management 12.2