Role Based Administration allows Control-M Administrators to delegate control to users to carry out specific administrative tasks on Control-M/Agents, Application Plug-ins,and Connection Profiles. Users can create, configure, and monitor their resources from Automation API and Control-M Web, which eliminates the dependencies on the Control-M Administrator. The Control-M Administrator can restrict access and control to the users to their defined resources, without exposing other resources in the environment.
A Control-M Administrator can authorize the following capabilities to the user:
Control-M/Agents: Control-M/Agents are assigned to users by a tag. A tag is a logical name that is used to label specific Control-M/Agents into a group with a specific authorization level. You can only define one tag per Agent.You can create and then apply a tag to a Control-M/Agent when it is defined or after it is already connected. Users can define their own tags with the asterisk character if they have the correct permissions. For example, if users have been assigned the Agent tag with the value Fin*, they can define their own tag names when they add Control-M/Agents, such as FinDev or FinOps.
Application Plug-ins: Users are authorized to manage specific Application Plug-ins independently.
Connection Profiles: Users are authorized to manage specific local or centralized connection profiles without having access to the entire configuration of the organization.
Run as Users: Users are authorized to define Run as Users based on specific Control-M/Servers.