How do I create DS users who have permissions and rights?
Altiris recommends that customers create a separate user that has Administrative rights on the Deployment Server. This allows the Deployment Server to schedule an event to a computer that contains a reconfigure task. If this is not possible due to security concerns, create a user with the following rights:
It is also recommended that a separate user is created that has Administrative rights to the Client Access Point; however, if this is not possible due to security concerns, create a user that has the following rights for each component to access the Client Access Point:
BootWorks (DOS Client that is run from Hidden or Embedded bootworks partition or through PXE)
[RF] - Netware share for Image Download
[WC] - Netware share for Image Upload
[RX] - NT share for Image Download
[W] - NT share for Image Upload
[RF] - Netware share for downloading RIPs
[RX] - NT share for downloading RIPs
Rights needed to launch the Win32 and WebConsole from a workstation: Until recently to launch either the Win32 or WebConsole the user logged into the workstation machine had to have the DBO role to the Express database. There is now a tool named eXpress>Deployment Server> Techsup> Windows>DSDBSecurity.exe that examines the Express database’s Tables, Stored Procedures and Views and gives permissions to the PUBLIC role so that the logged on user doesn't have to the DBO role to the Express database
A short explanation and is provided below:
Launch the DB Security Update utility. When it launches press ‘Connect’ to connect to the database after you have the correct login information. When a connection to the database is made, it will set the appropriate PUBLIC role privileges all of the Tables, Stored Procedures and Views in the Express Database. For most users, this is all of the utility that will need to be used.
If you want to add users to SQL and set rights on the Express database click on Users.
There are four options:
Console PC (Launching RapidInstall, PC Transplant, Boot Disk Creator, Image Explorer)
[RF] - Netware share to open RIPs, Images for Read access
[WC] - Netware share to edit, create, modify RIPs and Images
[RX] - NT share to open RIPs, Images for Read access
[W] - NT share to edit, create, modify RIPs and Images