Administration GuideCustom Roles and PoliciesConfiguring Custom User Roles and Access Policies › Create an Access Filter

Previous Topic: Create a Dynamic User Group Policy

Next Topic: Maintaining User Accounts and Access Policies

Create an Access Filter

You can create an access filter to restrict access to log data meeting the filter criteria. By default all CA Enterprise Log Manager application users have query access to event log data stored in the event log stores of the active CA Enterprise Log Manager server, peer servers in a meshed federation or descendant servers in a hierarchical federation.

You can restrict access to the event log store of one or more specific CA Enterprise Log Manager servers by creating a data access filter. You can apply an access filter to an individual or a group.

To create an access filter for a user-defined role

  1. Click the Administration tab and the User and Access Management subtab.
  2. Click New Access Filter.

    The New Access Filter putton is the first button under the Access Filter List.

    The Access Filter Design wizard appears.

  3. For Details, enter the name and description for the filter.
  4. Click Identities. Select an Identity type, click the search button to show available identities, and use the shuttle control to select the ones to which this access filter applies.

    For example, select the application group you created for this purpose.

  5. Set the access filters.
    1. Click Access Filters.
    2. Click the New Event Filter button.

    The New Event Filter button is designated with a plus sign, for Add.

    1. Add one or more expressions that define the access filter.
    2. Click Save and Close.

    The Access Filter you created appears.

  6. Click Close.

More information:

Step 4: Create Win-Admin Data Access Filter

Create an Application User Group (Role)