Skip to Content


System logins Users screen

The System Logins Users screen is accessed by clicking on the System tab, and then clicking Logins, and then clicking Users. This screen is available only to admin type users and permits the operator to add, modify, or delete BMC Defender Server system logins. This screen is depicted as follows:

image2019-3-22_16-33-44.png

The user adds a login via AddNew option. To edit an existing login, you click Edit button at the left of the target username. To delete a login, you first click Edit option and then click Delete option on the edit dialog. All user password information is kept in encrypted form on the disk and is only accessible through the login screen shown here.

The number of user logins to the system depends upon your licensing option to the system if no licensed number of users is specified.

User login parameters

When creating a user login, the BMC Defender Server administrator must specify the following parameters associated with each user. The administrator then clicks SaveNew option to save these parameters. 

  • Login Username—This is the user ID assigned by the administrator. The name must contain only alphanumeric characters, a dash, or an underscore. The name cannot contain any special characters. 
  • Full Username—This is the full username, that appears on the user preferences. The end-user can modify this value, that is provided for reference only. 
  • User Email Address—This is the e-mail address for the user, helpful in notifying the user. The end-user can modify this value, that is provided only for reference. 
  • Login Password—This is the password for the user, that can be a suitably long password that the end-user can change via the user preference screen. 
  • System Access—This is the particular access to the system, that governs what screens and modifications you can make to the system. This value is further explained in the next section.

User permissions

Each user, in addition to having a required username and password, is assigned to a BMC Defender Server permission group that controls how you can access the system. BMC Defender Server supports the following system access groups: 

  • Admin group—This group provides complete access to all parts of the BMC Defender Server system, including the login screen, and all system parameters. Administrators have no limits to their access. Administrators essentially have all permissions turned off. 
  • User group—This group provides both read and write access to all system configurable data except for global system parameters, logins, and some specialized data (such as the ODBC interface.) Generally, this is the level associated with power users or the main users of the system.
  • Guest group—This group provides read access to most of the data to the system, but no write access. Generally, this is the level associated with guests to the system who might be interested in inspecting data, but should not be given permissions to modify any data or view certain data items. 
  • Report group—This group is identical to the Guest group, except that only the Reports > PDF tab appears for you. Members in this group cannot access any other BMC Defender Server screens directly, and cannot modify any data. They can download reports and configure new report items. Generally, this screen is the level associated with auditors who are only interested in report information from BMC Defender Server. 
  • Ticket group—This group is identical to the Guest group, except that only Tickets tab appears for you. Members in this group cannot access any other BMC Defender Server screens directly, and cannot modify any data except for ticket data. Generally, this is the level associated with operators or managers that are tasked with dispatching and resolving ticket items. 
  • Dashboard group—This group is identical to the Guest group, except that only the Dashboard tab appears for you. Members of this group cannot access any other BMC Defender Server screen directly, and cannot modify any data. Generally, this level is associated with operators or managers that want to view high-level system status. 
  • Custom Group—This special group allows the administrator to define custom permissions for you, including the ability to limit the tabs seen by you, and the limit the ability of the user to see items other than pinned items. More information on Custom access is discussed in the next section. 
  • Disabled group—This group consists of users that have been temporarily or permanently denied access to any part of BMC Defender Server. Members of this group cannot log into the BMC Defender Server system. 

For any non-disabled user, your preferences are always accessible and can be modified. In the special case of ticket and dashboard users, the System tab is not displayed for you, however, you can access user preferences via the More menu hyperlink at the upper right of the display. 

Attempting to access an area of BMC Defender Server without permission displays a screen indicating that permission has been denied to you, thereby preventing you from continuing with the operation. In this case, you should click the back button of the browser to return to the previous screen or click on some other BMC Defender Server navigation tab to enter a valid area of the program. 

Related topic

System-screens


 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Defender SIEM Correlation Server 5.9