User permissions

Asset Admin

Users with Asset Admin permissions can perform all of the Asset Inventory functions as well as the following Asset Management functions:

• Create, modify, and administer contracts.
• Create and modify license certificates from the Service Activation Management console.
• Create and modify CIs
• Create and modify CI Unavailability records (also referred to as Outage records).
• Manage configurations.
• Manage schedules.
• Manage costs.
• Perform bulk update functions.

• Configure costing and charge back periods from the Application Administration console.

  Note

  This permission does not grant access to purchasing or receiving functions.

  Grant these permissions only to individuals playing a Configuration Administrator role.
  
  Users with Asset Admin permission have full access to contracts and SWLM features, which means they do not need any other Contract permissions unless they must create new Contract Types (this ability is given with Contract Admin permissions) or configure certain aspects of SWLM (this ability is given with Contract Config permissions).A person with Asset Admin permissions does not need Asset User and Asser Viewer permissions.

Fixed or Floating

Asset User

Users with Asset User permissions can perform all of the Asset Inventory functions as well as the following Asset Management functions:

• Create and modify contracts.
• Create, modify, and delete the following within a CI record to which the user has access (but they cannot perform these functions from the Asset Management console):
  • Contracts
  • Configurations
  • Costs
  • Outages
  • Returns

  • Schedules
    
    Asset Admin permission is required to access inventory management and bulk update features.

    Note

    This permission does not grant access to the following functions:

    • Inventory management
    • Bulk update
    • Purchasing
    • Receiving

    Grant these permissions to individuals who are directly supporting specific CIs and who must update CI attributes and relationships.The Asset User permissions do not have equivalent permissions to the Contract User permissions group. If a user requires the ability to either modify license certificates or manage License jobs as part of SWLM, then they must also be given Contract User permissions.
    
    A person with Asser User permissions does not need Asset Viewer permissions.

Fixed or Floating

Asset Viewer

Users with Asset Viewer permissions have access to all of the Asset Inventory functions as well as the following Asset Management functions:

• Read access to contracts.
• Read access to the following areas within a CI record:
  • Contracts
  • Configurations
  • Outages

  • Schedules

    Note

    This permission does not grant access to:

    • Inventory management
    • Bulk update
    • Cost management
    • Purchasing
    • Receiving functions
    • Software Asset Management console

    Recommendation

    Grant these permissions to all Support personnel (that is, users who do not already have the Asset Admin or Asset User permissions). Having access to CI information is vital for most ITIL processes.

    Note

    Asset Viewer permissions are automatically granted when assigning any of the following permissions:

    • Incident User
    • Incident Master
    • Problem User
    • Problem Master
    • Infrastructure Change User
    • Infrastructure Change Master
    • Infrastructure Change Config
    • Release Config
    • Release Master
    • Release User
    • Task Manager
    • Task User
    • Purchasing User
    • Contract Admin
    • Contract User
    • Contract Viewer
    • Request Catalog Manager

None

Asset Config

Users with Asset Config permission have access to all of the Asset Inventory functions as well as the following Asset Management functions:

• Configuring CI depreciation criteria
• Configuring CI notifications
• Configuring CI Unavailability status
• Configuring License Types
• Configure Inbox preferences for SWLM
• Configuring License Engine for SWLM
• Configuring Asset Management rules
• Configuring CI Unavailability priority

• Setting up server info for AR System License Type for Software License Management (SWLM).

  Grant these permissions only to individuals who administer the Asset Inventory and Asset Management system (that is, to someone who acts as an Application Administrator).Users with Asset Config permission do not need Contract Config permissions.

Fixed or Floating

Purchasing User

Users with Purchasing User permissions can access the following functions within the BMC Asset Management application:

• Create and modify purchase requisitions that are assigned to the user's support group (this includes line items).

• Create and modify purchase orders.
  This permission grants access to only the purchasing functions (excludes receiving) and does not provide any access to areas where an 'Asset' or 'Contract' type permission are required.

  Recommendation

  Limit the use of these permissions to individuals who perform the following roles in the Asset Management Purchasing feature:

  • Configuration Administrator — These individuals might must submit purchase requests issued through the Change Management process
  • Purchasing Agent

Fixed or Floating

Receiving User

Users with Receiving User permissions can access the Receiving console to receive CIs from the Purchasing system.

None

Contract Admin

Users with Contract Admin permissions can perform the following functions:

• Create and modify all contracts from the Contract console.
• Create and modify license certificates from the SAM console.
• Configure new Contract Types from the Application Administration console.

• Manage license jobs from the SAM console.

  Recommendation

  Grant these permissions to people who need full access to the Contract Management features, but who don't need the full Asset Management access given by the Asset Admin permissions group.

  Note

  A user with the Asset Admin permission can do everything that a user with Contract Admin permission with the exception of creating new Contract Types.

Fixed or Floating

Contract User

Users with Contract User permissions can perform the following functions:

• Modify public contracts from the Contract console.
• Modify internal contracts from the Contract console (if the user belongs to the Support Group that manages the contract).
• Create and modify license certificates for contracts they have access to from the SAM console.

• Manage license jobs from SAM console.

  Recommendation

  Grant these permissions to individuals who need controlled access to create and modify contracts, but who do not require access to modify CI information. If a user is also needs to modify CI information, you should also give them Asset User permissions.

Fixed or Floating

Contract Viewer

Users with Contract Viewer permission can view all contracts from the Contract console.

This permission does not grant access to the SAM console.

Users with Asset Viewer permissions do not also need Contract Viewer permissions.

None

Contract Config

Users with Contract Config permission can perform the following functions:

• Configure License Types.
• Configure Inbox preferences for SWLM.
• Configure the License Engine for SWLM.
• Configure Asset Management rules.

• Set up server information for the AR System License Type for SWLM.

  Note

  This permission does not grant access to the SAM console.

  Recommendation

  Grant these permissions to individuals who must only configure Software Licence Management (SWLM) features.

  Note

  If a user has Asset Config permission they do not need Contract Config permissions. This is because, the Asset Config permissions group can configure the same SWLM features that the Contract Config permissions can configure.

  Typically, an Application Administrator requires this set of permissions.

Fixed or Floating