Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Dell EMC OpenManage Enterprise–Tech Release User's Guide

PDF

OpenManage Enterprise–Tech Release user role types

NOTE: AD and LDAP directory users can be imported and assigned one of the OpenManage Enterprise–Tech Release roles (Admin, DeviceManager, or Viewer). The Single-Sign-On (SSO) feature can be used only till logging in to the console. Actions run on the devices require a privileged account on the device.

OpenManage Enterprise–Tech Release provides a built-in report about the group-based user permissions allocated. Click OpenManage Enterprise > Monitor > Reports > User Permissions per Group. Click Run. See Running reports.

Table 1. OpenManage Enterprise–Tech Release User role typesThis table lists the OpenManage Enterprise–Tech Release user role types and privileges granted to them.
User with this role...Has the following user privileges
Administrator
Has full access to all the tasks that can be performed on the console.
  • Full access (by using GUI and REST) to read, view, create, edit, delete, export, and remove information related to devices and groups monitored by OpenManage Enterprise–Tech Release.
  • Can create local, Microsoft Active Directory (AD), and LDAP users and assign suitable roles
  • Enable and disable users
  • Modify the roles of existing users
  • Delete the users
  • Change the user password
Device Manager (DM)

NOTE: DMs can share permissions to the tasks and policies created by each other. This sharing occurs by having complete overlap with the device groups contained in the task or policy, and those assigned to the DM. If the DM loses complete overlap with the groups contained in the task or policy, the DM will no longer be able to run or edit it unless this overlap is restored.

  • Get only device group permissions from the admin. All other permissions are fixed.
  • Run tasks, policies, and other actions on the devices in the groups assigned by the administrator.
  • Cannot delete or modify any groups.
  • More than one DM can be assigned access to the same static, dynamic, and system groups of devices.
  • Any number of groups can be assigned to a DM.

NOTE: Users with Device Manager (DM) privileges cannot be assigned groups.

Viewer
  • Can only view information displayed on OpenManage Enterprise–Tech Release and run reports.
  • By default, has read-only access to the console and all groups.
  • Cannot run tasks or create and manage policies.

NOTE: If a viewer or DM is changed to an administrator, they get the full administrator privileges. If a viewer is changed to a DM, the DM has the same privileges as a viewer, if no device groups are assigned to the DM.

NOTE: A change in the user role will not affect a logged-in user. The changes become effective only after the next user login.

NOTE: An audit log is recorded when:

  • A group is assigned or access permission is changed.
  • User role is modified.

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\