A management group determines which groups and subgroups an administrator is permitted to manage. For a reviewer, their management group limits any search results to include only events associated with users in this group.
A management group is the highest level group in any branch of the user hierarchy that they are permitted to manage. If required, an administrator can have multiple management groups.You can assign any existing group as a management group for a particular administrator. Assigning multiple management groups enables an administrator to manage separate branches of the user hierarchy.
Each management group represents a ‘management branch’ of the user hierarchy. Within each management branch, an administrator can manage user accounts, edit policies, view captured data and so on. Any groups that lie outside this branch are hidden in the console, and cannot be managed by the administrator. In the example below, if the administrator is assigned to management group 3, he or she cannot view data captured on behalf of users in a green group.
If the management group is:
1, the administrator can manage any group in the organization.
2, the administrator can manage the green and blue groups.
3, the administrator can manage the blue groups only.
To assign a management group
Note: You cannot set or change the management group of a user who has the 'Admin: Disable security model filtering' privilege.
To override management group constraints
You can permit an administrator to bypass management group security measures and search for events throughout the entire CA DataMinder enterprise.
|
Copyright © 2014 CA.
All rights reserved.
|
|