Task Delegations Groups (GSUDO) Properties
Use the Task Delegations Groups (GSUDO class) properties windows for creating, modifying, or viewing a record of this class. You create a task delegation for each action before adding it to a task delegation group. Use task delegation groups for defining access rules for a group of task delegations rather than specifying the same access rule for each resource.
cminder12902
Use the Task Delegations Groups (GSUDO class) properties windows for creating, modifying, or viewing a record of this class. You create a task delegation for each action before adding it to a task delegation group. Use task delegation groups for defining access rules for a group of task delegations rather than specifying the same access rule for each resource.
This window contains the following fields in the General tab:
- NameDefines the name of the resource.
- CommentDefines extra information that you want to include in the record. CA Privileged Identity Manager does not use this information for authorization.Limit:255 alphanumeric characters
- OwnerDefines the owner of a record.
This window contains the following fields in the Membership tab:
- Add MemberOpens a window listing all resources of the type that is available for this group.
This window contains the following fields in the Authorize tab:
- AccessorsDefines the access control list (ACL) for the resource. This list specifies accessors (users and groups) with a specified access authority, and the conditions for that access.Each element in the access control list contains the following information:
- AccessorDefines an accessor.
- CalendarDefines a calendar in Unicenter TNG that governs the access authority of the accessor.
- ProgramDefines a record in the PROGRAM class, either specifically or by wildcard pattern matching. The program definition limits the access authority of the accessor to the resource to when the specified program makes the access request.
- ACLDefines the access authority that the accessor has to the resource.
This window contains the following fields in the Audit tab:
- Audit ModesDefines the types of access events that CA Privileged Identity Manager records in the audit log. You can select any combination of the following activities:
- Audit SuccessGranted access requests
- Audit FailureDenied access requests (default).
- Warning ModeSpecifies whether Warning mode is enabled. When Warning mode is enabled on a resource, all resource access requests are granted. If an access request violates an access rule, a record is written to the audit log.
This window contains the following fields in the Information tab:
- Update TimeDisplays the date and time when the record was last modified.
- Updated ByDisplays the administrator who performed the update.
- Create TimeIndicate the date and time when a record gets created.