Database Reference
In-Depth Information
EM_PATCH_ADMINISTRATOR
- Role for creating, editing, deploying, deleting, and granting privileges for any
patch plan.
EM_PATCH_DESIGNER
- Role for creating and viewing any patch plan.
EM_PATCH_OPERATOR
- Role for deploying patch plans.
EM_PLUGIN_AGENT_ADMIN
- Role to support plug-in lifecycle on management agent.
EM_PLUGIN_OMS_ADMIN
- Role to support plug-in lifecycle on management server.
EM_PLUGIN_USER
- Role to support and view plug-in console.
EM_PROVISIONING_DESIGNER
- Role has privileges for provisioning designer.
EM_PROVISIONING_OPERATOR
- Role has privileges for provisioning operator.
EM_SSA_ADMINISTRATOR
- EM user with privilege to set up the self-service portal. This role can define quotas
and constraints for self-service users and grant them access privileges.
EM_SSA_USER
- This role grants EM user the privilege to access the self-service portal.
EM_TARGET_DISCOVERY_OPERATOR
- Role has privileges to execute target discovery.
EM_TC_DESIGNER
- Role has privileges for creating template collections.
EM_USER
- Role has privilege to access Enterprise Manager application.
PUBLIC
- PUBLIC role is granted to all administrators. This role can be customized at site level to group
privileges that need to be granted to all administrators.
Note that the compliance users indicate that auditors and security folks should have EM access by design, which
is good. As well as roles within EM, there are privileges that pertain to all targets listed in Figure
18-6
.
Figure 18-6.
EM user privileges
