Permissions Configuration

The BMC Helix FSM Gateway uses a permissions file to handle how the gateway authenticates mobile users and determines which apps should be available to any particular user. The permissions file can be located in the BMC Helix FSM\Deployment directory (C:\Program Files (x86)\BMC Helix FSM\Deployment if the BMC Helix FSM solution was installed in it's default location). Your default _permissions.xml file will look like this with the loginserver attribute populated with the Helix Server Address set during the installation:
 

Set up Group Permissions

You can modify the _permissions.xml file to control various levels of access for mobile users. Access can be controlled by usernames, user groups, devices (platform, type, name, version, etc.), and operating systems. The default Deployment folders that the _permissions.xml file manages are AndroidiOS-Phone, AndroidiOS-Tablet, and Windows. In the default _permissions.xml file, you can see that only devices with the correct dev_type have access to their associated folder. In addition to the default Deployment folders, you can create new folders and manage those folders access by adding the necessary attributes in the _permissions.xml file. Below are the some examples of how you can configure access to a particular Deployment folder.

Permissions is not limited to groups. Specific users can be targeted using the name "username", as seen in these two examples:

In addition to folders, you can specify access to individual files:

You can use AND, OR, or NOT clauses to control certain users and groups:

For these clauses, you can use group, username, or a mix of the two. You can also use file and deny.