Roles and Permissions Reference

You can configure user's roles and permission in the TIBCO Enterprise Administrator server.

By default, the following roles are configured in the BusinessEvents Enterprise Administrator Agent:

APP_MANAGER
The user with the APP_MANAGER role has all permissions in BusinessEvents Enterprise Administrator Agent.
DEPLOYER
The user with the DEPLOYER role has permissions required for processing unit instance deployment in BusinessEvents Enterprise Administrator Agent.
OPERATOR
The user with the OPERATOR role has permissions required for starting and stopping the processing unit instance in BusinessEvents Enterprise Administrator Agent.
RULE_AUTHOR
The user with the RULE_AUTHOR role has permissions to create non-health rules in BusinessEvents Enterprise Administrator Agent.

Non-health rules are those which do not alter the state of cluster health based on a rule.

RULE_AUTHOR_ADMIN
The user with RULE_AUTHOR_ADMIN role has permissions perform all rules and alerts operations in BusinessEvents Enterprise Administrator Agent.
VIEW_ALL
The user with the VIEW_ALL role has read-only permissions in BusinessEvents Enterprise Administrator Agent.

The following table lists all the default permissions and indicates which permissions are enabled for which role by default. If required, new roles and permission can be added in the TIBCO Enterprise Administrator by the administrator. Refer to the TIBCO Enterprise Administrator User's Guide for adding roles and permissions.

Default Roles and Permissions of BusinessEvents Enterprise Administrator Agent
Permissions APP_

MANAGER

DEPLOYER OPERATOR RULE_

AUTHOR

RULE_

AUTHOR_

ADMIN

VIEW_

ALL

CREATE_DEPLOYMENT_PERMISSION

Create or import an application deployment

Yes No No No No No
UPDATE_DEPLOYMENT_PERMISSION

Edit or update an application deployment

Yes No No No No No
DELETE_DEPLOYMENT_PERMISSION

Delete an application deployment

Yes No No No No No
CREATE_HOST_PERMISSION

Create a host

Yes Yes No No No No
UPDATE_HOST_PERMISSION

Edit or update a host

Yes Yes No No No No
DELETE_HOST_PERMISSION

Delete a host

Yes Yes No No No No
CREATE_INSTANCE_PERMISSION

Create a processing unit instance

Yes Yes No No No No
UPDATE_INSTANCE_PERMISSION

Edit a processing unit instance

Yes Yes No No No No
DELETE_INSTANCE_PERMISSION

Delete a processing unit instance

Yes Yes No No No No
START_PU_INSTANCE_PERMISSION

Start a processing unit instance

Yes Yes Yes No No No
STOP_PU_INSTANCE_PERMISSION

Stop a processing unit instance

Yes Yes Yes No No No
KILL_INSTANCE_PERMISSION

Kill a processing unit instance

Yes Yes Yes No No No
HOT_DEPLOY_PERMISSION

Hot Deploy

Yes Yes No No No No
COPY_INSTANCE_PERMISSION

Copy a processing unit instance

Yes Yes No No No No
UPDATE_GV_VAR_PERMISSION

Update Global Variables

Yes Yes No No No No
UPDATE_SYSTEM_PROPS_PERMISSION

Update System Properties

Yes Yes No No No No
UPDATE_JVM_PROPS_PERMISSION

Update JVM Property

Yes Yes No No No No
UPDATE_LOG_LEVEL_PERMISSION

Update Log Level

Yes Yes No No No No
SUSPEND_AGENT_PERMISSION

Suspend running BusinessEvents agent

Yes Yes Yes No No No
RESUME_AGENT_PERMISSION

Resume suspended BusinessEvents agent

Yes Yes Yes No No No
DEPLOY_INSTANCE_PERMISSION

Deploy a processing unit instance

Yes Yes No No No No
UNDEPLOY_INSTANCE_PERMISSION

Un-deploy a processing unit instance

Yes Yes No No No No
UPLOAD_TRA_PERMISSION

Upload the TRA file

Yes Yes No No No No
DEPLOY_CLASSES_PERMISSION

Deploy the classes

Yes Yes No No No No
UPLOAD_CLASSES_PERMISSION

Upload the classes

Yes Yes No No No No
DEPLOY_RULE_TEMPLATE_PERMISSION

Deploy rule template instance

Yes Yes No No No No
CREATE_RULE_PERMISSION

Create an alert rule

No No No Yes Yes No
UPDATE_RULE_PERMISSION

Update an alert rule

No No No Yes Yes No
DELETE_RULE_PERMISSION Delete an alert rule No No No Yes Yes No
GET_RULES_PERMISSION

View all alert rules

No No No Yes Yes No
RULE_ADMIN_PERMISSION

Create health rules

No No No No Yes No
CLEAR_ALERTS_PERMISSION

Clear alerts

No No No Yes Yes No
GET_ALERTS_PERMISSION

View alerts

No No No Yes Yes No
read

Read permission

Yes Yes Yes Yes Yes Yes
UPDATE_BE_PROPS_PERMISSION

Update BusinessEvents property

Yes Yes No No No No
ADD_PROFILE_PERMISSION

Add a new deployment profile

Yes Yes No No No No
UPDATE_PROFILE_PERMISSION

Update the existing deployment profile

Yes Yes No No No No
DELETE_PROFILE_PERMISSION

Delete the existing deployment profile

Yes Yes No No No No
SET_DEFAULT_PROFILE_PERMISSION

Set the default deployment profile

Yes Yes No No No No