SLM Roles
Use
To protect the SLM from unauthorized access, as well as to provide a way of tracking the changes made in the system landscape, three SLM roles are defined. These roles are based on the User Management Engine (UME) role concept. The roles in the SLM are analogical to the security roles in SLD.
Features
SLM Roles, Actions and Permissions
SLM Role |
SLD and SLM Actions |
SLD and SLM Permissions |
SlmViewer |
LcrUser |
Read access to data in the SLD server and data in the local database |
tc~slm~permissions.View |
● View system landscape data ● View plan data (not allowed to create, confirm and delete plans) ● View realized scenario data ● View plan and realized scenario data in a graphical mode (not allowed to make changes to a model) ● View solution data (not allowed to add and delete third-party solution data) |
|
SlmCreator |
LcrInstanceWriterAll |
In addition, write access to data in the SLD server and data in the local database |
tc~slm~permissions.Create |
In addition: · Create, confirm and delete plans · Make and save changes to a plan and realized scenario graphical model ● Add, save and delete third-party solutions data |
|
SlmAdministrator |
LcrAdministrator |
Includes all other roles |
tc~slm~permissions.Configure |
Includes all other roles |
Activities
To create SLM roles:
...
1. Create SLM users.
2. Create SLM roles and assign the corresponding SLD and SLM actions to the SLM roles.
The SLD and SLM actions are defined in the UME.
3. Assign the SLM users to the SLM roles.
For more
information about managing UME
roles, see
Managing Users, Groups, and
Roles.
See also: