Managing user roles and permissions

Roles and permissions are integral to user administration and access control in BMC Helix Edge. Roles and permissions define what actions users can take and what parts of the system they can access.

 

Related topics

Setting up role-based access controlimage-2024-2-23_15-9-7.png 

Task 1: To add a new role

  1. On the BMC Helix Edge page, select Administration > Role Management.
    BMC Helix Edge displays the following default predefined roles:

    User type

     Role description

    DashboardUser

    Accesses and interacts with dashboards and visualization tools. They can view data and reports but might not have administrative privileges. 

    UserAdmin

    Manages user accounts, roles, and permissions within the system. They can create, edit, and delete user accounts and assign roles in BMC Helix Edge.

    OTAnalyst

    Configures the settings for the machine learning training of rule sets, creates workflows, and develops dashboards. They focus on data analysis and operational tasks. 

    PlatformAdmin

    Has broad access and control over the entire BMC Helix Edge environment. They can configure system settings, manage devices, and oversee user administration.

    ETL

    Involves data integration and transformation processes. They manage data pipelines, extract data from various sources, transform it, and load it into the environment.

  2. On the Roles and permissions page, click New role.

  3. In the Add role panel, complete the following fields:

    Field name

    Description

    Role type

    Select one of the following role types from the list. Role types categorize roles based on their purpose. 

    • Business: This role pertains to specific business functions or processes.
    • Environment: This role relates to system or environment administration.

    Role name

    Specify the name of the role that is created or managed. Make sure that the role name is descriptive and reflects the responsibilities associated with the role.

    (Optional) Description

    Provide a brief description of the role, outlining its purpose and responsibilities. This description helps administrators and users understand the role's purpose.

  4. Click Save.

Task 2: To assign permissions

When you create a role, you must assign specific permissions to the new role based on the role's responsibilities and access.

  1. On the Roles and permissions page, select Actions > Edit.

  2. In the Roles option panel, complete the following fields:

    Field name

    Description

    (Optional) Description

    Provide a brief explanation or label for the role. For example, for OTAnalyst, enter Responsible for analyzing IoT data and generating reports.

    Default home page

    Select the default home page from the list.

    Select one or more resources with the Read and Write option from the Resources list to designate a resource as the default home page. Otherwise, the list will appear empty.

    Resources 

    Specify whether users can read (view) or write (edit) those resources. This field defines the specific resources or data that users with this role can access. For example, if you have a role named ETL in the resources section, you can define the permissions as follows:

    • Read permission for Dashboard builder: View Dashboard builder with details.
    • Write permission for Profiles: Modify device profile attributes with this option.
  3. Click Save.

Task 3: To delete a role

  1. On the BMC Helix Edge page, navigate to Administration > User Management and confirm that the role is not attached to any user profile.
  2. Select Administration > Role Management.
  3. On the BMC Helix Edge page, select Administration > Role Management.
  4. In the Roles and permissions panel, select Actions > Delete.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*