Roles and permissions

BMC Helix AIOpsleverages BMC Helix Portal to provide single sign-on authentication for users.

As an administrator, you can create and edit users, user groups, and roles in BMC Helix Portal. You can assign any of the roles or permissions to users, such as creating, modifying, viewing, deleting, or managing objects in BMC Helix Portal. However, you cannot create new permissions.

As a BMC Helix Single Sign-On administrator, you can enable uninterrupted sessions for some operators or site reliability engineers (SREs) who require continuous access to the Service Heatmap view to monitor service impact. For such users, configure session settings in BMC Helix SSO Admin Console to ensure that the sessions remain active indefinitely, eliminating the need for repeated authentication. For more information, see Configuring infinite user sessions.

Related topics

Product-overview

Setting up roles and permissions

The following video (2:46) provides an overview of permissions and how to assign them to roles in BMC Helix Portal:

Watch the YouTube video about Assigning permissions to user roles in BMC Helix Portal.

Consult the following table to understand the default roles available in the product and the capabilities and permissions assigned to each role.

Important

In some organizations, these responsibilities are performed by site reliability engineering team (SRE). So, you might want to assign these permissions accordingly.

Roles	Responsibilities	Permissions
Roles	Responsibilities	Application or Service	Resource	Permission
Important: In addition to the permissions listed here, by default, all users must be assigned the DSM Read Only role in BMC Helix Portal. For more information, see Setting up role-based access control..
	View Services and individual service details View service predictions View and manage Situations Run and request automations Configure general settings such as setting a default landing page, enabling the dark theme for the console, or configuring the default data refresh interval for UI pages. Monitor and investigate vulnerabilities Important: To monitor and investigate vulnerabilities, you need additional permissions for managing vulnerabilities in BMC Helix Automation Console. For more information, see Roles and permissions	aiops	pca	view
			services	view
			situations	view
			situations	manage
	View Services and service predictions Create and modify service models Create and modify service blueprints Run and request automations Enable dark theme for the BMC Helix AIOps console Important: For modeling service blueprints and services, you need additional permissions for viewing devices and groups in BMC Helix Operations Management. For more information, see Authorization profile.	aiops	services	view
		aiops	services	manage
	Manage roles and permissions View all pages in BMC Helix AIOps Enable AIOps features Enable situations to aggregate events Create automation BMC Helix Intelligent Automation Monitor and investigate vulnerabilities	All permissions

Roles and permissions

On this page