Restrict or limit user access or view in Operator Console (OC)
search cancel

Restrict or limit user access or view in Operator Console (OC)

book

Article ID: 396557

calendar_today

Updated On: 05-06-2025

Products

DX Unified Infrastructure Management (Nimsoft / UIM) CA Unified Infrastructure Management On-Premise (Nimsoft / UIM) CA Unified Infrastructure Management SaaS (Nimsoft / UIM)

Issue/Introduction

  • We have created multiple groups in OC (per application or infra tech.) comprised of multiple devices, e.g., storage, backup, AD, database, etc.

  • We are now being requested by individual members to gain access in OC, for which we are planning to limit the access of each requestor, e.g., AD SME has access to only AD group and it's CIs, alarms, metric view, and doesn't get access to other groups. How can we achieve this?

  • We have done our AD/LDAP integration and created operator and admin groups.

Environment

  • DX UIM 23.4 CU3
  • Operator Console (OC)

Cause

  • Guidance

Resolution

Via IM, you need to associate ACLs/permissions for each LDAP group(s). Note that data visibility is controllable by granting or denying access by origin.

See also: related important documents on controlling OC access/features/views based on role, as well as ACL descriptions and their included permissions.

Role-Based access to Operator Console views

Additional Information

Account Admin Permissions

  • In the Operator Console, Account-contact users can only see devices, alarms, and QoS metrics from origins assigned to their account.
  • Note that you can assign multiple origins to an account, allowing for segregation of customer information, e.g., in a Managed Service Provider (MSP) environment.


Roles and permissions

  • Application roles and permissions are used to grant access to specific features and actions within UIM.
  • Users are assigned to default roles, which may not provide access beyond logging in.
  • By assigning users to roles that are associated with access/permissions, you can control access to UIM pages and actions.