Working With Target Privileges

Target privileges enable an administrator to perform operations on a target. Certain privileges are automatically given to administrators based on other privileges. For example, granting any privileges on a target automatically grants the View target privilege on the host.

Target privileges are divided into these groups:

Field or Control	Definition
View	Enables the administrator to view properties, inventory, and monitor information about a target. The view privilege is propagated to all members of aggregate targets such as groups and systems. Note: The view privilege must also be assigned to the agent of the target.
Operator	Enables the administrator to perform the following operations on a target: startup, shutdown, edit target properties, view the components of the system, modify system membership, add charts to the system, create or edit system topology, customize the dashboard associated with the system, change the columns that appear on the System Members page, and black out the system and its components. The Operator Target privilege does not automatically propagate to members of the System.
Full	Implicitly grants all the target privileges and enables the administrator to delete a target and configure credentials for maintenance operations of a target. When you create a system, you become its owner and automatically receive full privileges for the system and view on all targets. Certain privileges are automatically given to administrators based on other privileges. For example, granting any privileges on a target automatically grants the View target privilege on the host.

Field or Control

Definition

View

Enables the administrator to view properties, inventory, and monitor information about a target. The view privilege is propagated to all members of aggregate targets such as groups and systems.

Note: The view privilege must also be assigned to the agent of the target.

Operator

Enables the administrator to perform the following operations on a target: startup, shutdown, edit target properties, view the components of the system, modify system membership, add charts to the system, create or edit system topology, customize the dashboard associated with the system, change the columns that appear on the System Members page, and black out the system and its components. The Operator Target privilege does not automatically propagate to members of the System.

Full

Implicitly grants all the target privileges and enables the administrator to delete a target and configure credentials for maintenance operations of a target.

When you create a system, you become its owner and automatically receive full privileges for the system and view on all targets. Certain privileges are automatically given to administrators based on other privileges. For example, granting any privileges on a target automatically grants the View target privilege on the host.