Dear Colleagues,
Please find the below roles and usage for better understanding on the authorizations.
Area
|
Task
|
Role
|
Authorization groups
|
Design
|
View packages and package artifacts
|
WebToolingWorkspace.Read
|
AuthGroup.IntegrationDeveloper
|
AuthGroup.BusinessExpert
|
|||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Design
|
Create, edit, import, export, delete package with its artifacts
|
WebToolingWorkspace.Read
|
AuthGroup.IntegrationDeveloper
|
WebToolingWorkspace.Write
|
|||
Design
|
Update package
|
WebToolingWorkspace.Read
|
AuthGroup.IntegrationDeveloper
|
WebToolingWorkspace.Write
|
|||
Design
|
Configure artifacts (integration flows and value mappings)
|
WebToolingWorkspace.Read
|
AuthGroup.IntegrationDeveloper
|
WebTooling.IntegrationFlowConfigure
|
|||
Design
|
Deploy/undeploy artifacts
|
WebToolingWorkspace.Read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.Administrator
|
||
GenerationAndBuild.generationandbuildcontent
|
|||
NodeManager.deploycontent
|
|||
Design
|
Export Package for transport
|
WebToolingWorkspace.Read
|
n.a.
|
TransportModule.read
|
|||
TransportModule.write
|
|||
NoteThe role IntegrationContent.Transport is deprecated.
|
|||
Design
|
Import package from transport
|
WebToolingWorkspace.Read
|
n.a.
|
TransportModule.read
|
|||
TransportModule.write
|
|||
NoteThe role IntegrationContent.Transport is deprecated.
|
|||
Design
|
Update Package from transport
|
WebToolingWorkspace.Read
|
n.a.
|
TransportModule.read
|
|||
TransportModule.write
|
|||
NoteThe role IntegrationContent.Transport is deprecated.
|
|||
Discover
|
View packages
|
WebToolingCatalog.OverviewRead
|
AuthGroup.IntegrationDeveloper
|
AuthGroup.BusinessExpert
|
|||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Discover
|
View package artifacts
|
WebToolingCatalog.OverviewRead
|
AuthGroup.IntegrationDeveloper
|
WebToolingCatalog.DetailsRead
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Discover
|
Copy package to workspace
|
WebToolingCatalog.OverviewRead
|
AuthGroup.IntegrationDeveloper
|
WebToolingWorkspace.Write
|
|||
Monitor
|
View Monitor Overview
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
View message processing logs
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
AuthGroup.BusinessExpert
|
|||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
View payload of stored messages from message storage (also trace and
message processing log attachments)
|
esbmessagestorage.read
|
AuthGroup.BusinessExpert
|
Monitor
|
View tasks
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
View tail log
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
View deployed artifact list
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
View deployed integration flow in graphical editor
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
Download deployed integration flow
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
View deployed security material
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
Add credentials
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.deploycredentials
|
AuthGroup.Administrator
|
||
NodeManager.deploycontent
|
|||
Monitor
|
Add known host, keystore, PGP keyring artifacts
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
NodeManager.deploysecuritycontent
|
|||
NodeManager.deploycontent
|
|||
Monitor
|
Edit credentials
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.deploycredentials
|
AuthGroup.Administrator
|
||
NodeManager.readcredentials
|
|||
NodeManager.deploycontent
|
|||
Monitor
|
Undeploy credentials
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
NodeManager.deploycontent
|
|||
NodeManager.deploycredentials
|
|||
Monitor
|
Undeploy known host, keystore, PGP keyring artifacts
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
NodeManager.deploycontent
|
|||
NodeManager.deploysecuritycontent
|
|||
Monitor
|
Download keystore, public/prviate keyring, known host, .. artifact
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
NodeManager.read
|
|||
NodeManager.readsecuritycontent
|
|||
Monitor
|
View certificate-to-user mappings
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
Create/edit/delete certificate-to-user mappings
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
NodeManager.deploysecuritycontent
|
|||
NodeManager.read
|
|||
Monitor
|
View keystore entries
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
Download public keystore entries
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
Add/replace/delete keystore entries
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
NodeManager.deploysecuritycontent
|
|||
Monitor
|
View data store entries/variables
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
ESBDataStore.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
View data store entries - message payload/variables-content
|
IntegrationOperationServer.read
|
AuthGroup.BusinessExpert
|
ESBDataStore.readPayload
|
|||
Monitor
|
Delete data store entries/variables
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
ESBDataStore.read
|
|||
ESBDataStore.delete
|
|||
Monitor
|
View payload of stored messages from message store
|
esbmessagestorage.read
|
AuthGroup.BusinessExpert
|
Monitor
|
View trace configuration
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
||
ConfigurationService.RuntimeBusinessParameterRead
|
AuthGroup.SystemDeveloper
|
||
AuthGroup.Administrator
|
|||
Monitor
|
Edit trace configuration
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
(enable/disable trace)
|
NodeManager.read
|
AuthGroup.BusinessExpert
|
|
ConfigurationService.RuntimeBusinessParameterRead
|
AuthGroup.Administrator
|
||
ConfigurationService.RuntimeBusinessParameterWrite
|
|||
Monitor
|
Add/Edit/undeploy number ranges
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.deploycontent
|
AuthGroup.Administrator
|
||
Monitor
|
View number ranges
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
AuthGroup.BusinessExpert
|
|||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
Retry queues
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
ESBDataStore.read
|
AuthGroup.Administrator
|
||
ESBDataStore.retry
|
|||
Monitor
|
Delete queues
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
ESBDataStore.read
|
|||
ESBDataStore.delete
|
|||
Monitor
|
View queues
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
ESBDataStore.read
|
AuthGroup.BusinessExpert
|
||
AuthGroup.SystemDeveloper
|
|||
AuthGroup.Administrator
|
|||
Monitor
|
View runtime processing locks
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
MessageProcessingLocks.Read
|
AuthGroup.SystemDeveloper
|
||
AuthGroup.Administrator
|
|||
Monitor
|
Delete runtime processing locks
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
MessageProcessingLocks.Delete
|
|||
Monitor
|
Test connectivity
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
NodeManager.deploycredentials
|
AuthGroup.Administrator
|
||
Monitor
|
Change log level
|
IntegrationOperationServer.read
|
AuthGroup.IntegrationDeveloper
|
ConfigurationService.RuntimeBusinessParameterWrite
|
AuthGroup.BusinessExpert
|
||
NodeManager.read
|
AuthGroup.Administrator
|
||
Monitor
|
View audit log entries
|
IntegrationOperationServer.read
|
AuthGroup.Administrator
|
AuditLog.Read
|
|||
Settings
|
View/change product profile
|
WebToolingSettingsProductProfiles.savetenantconfiguration
|
AuthGroup.Administrator
|
Settings
|
Set ntransport system
|
WebToolingSettingsProductProfiles.savetenantconfiguration
|
AuthGroup.Administrator
|
No comments:
Post a Comment