RBAC access to report data

Defining roles in the role-based access control (RBAC) system of TrueSight Server Automation controls access to TrueSight Smart Reporting for Server Automation capabilities. TrueSight Server Automation includes the following built-in roles:

• BLAdmins
• RBACAdmins

For details about these roles and the standard authorizations granted to them, see Built-in roles and users in the TrueSight Server Automation documentation. 

By default, all roles that can log in to TrueSight Smart Reporting for Server Automation have access to the folders and built-in report definitions. Role definitions in the RBAC system control access to the data in reports by controlling access to the TrueSight Server Automation jobs and servers that are associated with the reports data.

RBAC determines the data that appears in domain reports, as shown in the following table.

Role definitions in domains

For information about setting up roles in RBAC, see Managing access in the TrueSight Server Automation documentation.

RBAC data updates

If you make role-based access control (RBAC) changes, ensure that you run an ETL to update the reports data warehouse with these changes as soon as possible.

For information about ETL and the scenarios used to transfer data, see Understanding data transfer scenarios.

Roles and report access in multi-site environments

The user assigned to the GlobalReportAdmins role at the primary site in a multi-site installation has access to all sites in the installation. This user has authorizations to see report data for all the sites.

Before the first ETL run, assign an existing user at the primary site to the GlobalReportAdmins role or create a user at the primary site and assign the user the GlobalReportAdmins role. Users at sites other than the primary site (except for users assigned to the GlobalReportAdmins role) only have access to their sites.