User Manager
You can assign roles to as many users as needed. At least one user must be assigned the administrator role.
If you want to delete a user who should no longer have access to Security Controls, see Deleting a User.
- Select Manage > Users.
The User Manager dialog is displayed. - Make sure the Roles Enabled check box is enabled.
You cannot add or edit a user unless role-based administration is enabled. - Click New or select an existing user and then click Edit user role.
- Type a user name and then select the role you want to assign to that user.
- When specifying the user name you must use the following format: domain\user.
- If you are unsure of the correct domain and user name, you can view a list of all available domains and users by clicking Find User. The resulting dialog enables you to conduct either a quick search of just the Users organizational unit or a more comprehensive search of the entire active directory.
- Role definitions:
- Administrator: Full access to all features of the program. Only an administrator user can modify the roles assigned to other users.
- Full user: Access to all features except for the ability to administer roles.
- Scan and report only: Can only perform patch scans and generate reports.
- Patch deploy and report only: Can only perform patch deployments and generate reports.
-
- Reporting: Can only generate reports for:
- Patch Report only
- Application Control report only
- Patch and Application Control report only
- Click OK.
For information on what it means for a user to be sharing credentials or sharing credential usages, see Shared Credentials.
You cannot edit your own role.
The Select User and Role dialog is displayed.
All configured users must have access to the database. If users without administrative rights on the console machine receive an error when starting Security Controls, it probably means they don't have the necessary SQL Server permissions. See SQL Server Preinstallation Notes for more information.