Controlling access to the log data
Controlling access to log data provides enhanced security to your system. It can also boost the system performance by limiting the number of logs and log events that are generated.
The following video (2:00) provides an overview of data-level access control.
Scenario
Let's consider the examples in the following table to understand how access control is implemented.
Benefits
By restricting access to log data, you can reap the following benefits:
- Only authorized users can view and access log data.
- You can limit the number of events that are generated in BMC Helix Operations Management. This can boost your system performance and reduce event noise, helping you to concentrate quickly on actionable events.
Workflow
As an administrator, perform the following steps to set up data-level access for logs:
- In BMC Helix Operations Management, configure an authorization profile with permissions for the right user group.
- In BMC Helix Log Analytics, assign a user group in a collection policy.
- In BMC Helix Log Analytics, assign a user group in an alert policy.
As an operator, you can view the results of the data-level access restriction on the following pages:
- In BMC Helix Log Analytics: On the Explorer, where you can see only those logs to which you have access
- In BMC Helix Operations Management: The Events page, where you can see log events only for those devices to which you have access
The following table provides information about the steps involved in implementing data-level access for logs:
Task | Product | Role | Action | Reference |
|---|---|---|---|---|
Set up data-level access control | ||||
1 | BMC Helix Operations Management | Administrator | Define an authorization profile with access to the appropriate devices. | |
2 | BMC Helix Log Analytics | Administrator | Configure a collection policy with an assigned user group. | |
3 | BMC Helix Log Analytics | Administrator | Configure an alert policy with an assigned user group | |
View results of the data-level access control | ||||
- | BMC Helix Operations Management | Operator | View the events that you have access to | To learn about the Events page, see Monitoring and managing events To learn about setting up access control, see Setting up access control |
- | BMC Helix Log Analytics | Operator | View the logs that you have access to | |