Argent Scheduler Security
The Argent Scheduler interface is the first place security should be set. This will immediately limit the ability of non-administrator level users from inappropriately accessing the Argent Scheduler interface and associated settings.
Security Sensitive Operations
The security settings for the Argent Scheduler interface are located on Security tab in the Configuration dialog.
This can be accessed from the Settings -> Configuration Options.
The Screen ID Number for the Security window is J4P.
This dialog gives you access to multiple settings.
These are accessed via the Security Sensitive Operations drop down list.
The following table explains each Security Sensitive Operation:
Security Operation | Description | Application |
Service | Start/stop service, job rollover, job control panel, system-wide Parameters, service restart option, service failure-proof option | Prevents users from performing any actions on the service i.e. Starting or Stopping. Either from within the Argent Job Control Panel or on the services dialog |
Backup/Restore | Backup/restore the Argent Scheduler setup information | Prevents users from performing the backup and restore process within Argent Job Control Panel |
License | Update license key | Prevents users from administering the license key within the Argent Job Control Panel. |
Define SCHEDULER Database |
Modify the Argent Scheduler information except job class and job templates. Example: Add/Delete/Modify Alert, Macro, etc. This security setting DOES NOT apply to the job class. See the explanation for security sensitive operation ‘Modify Job Class’ Changing a job template is FURTHER controlled by the security setting at the job class level. |
Prevents users from making any changes to objects in the Argent Scheduler such as Macros, Alerts etc. This does not apply to job classes or job templates. |
Modify GUI |
Modify the Argent Scheduler information except job class and job templates. Example: Add/Delete/Modify Alert, Macro, etc. This security setting DOES NOT apply to the job class. See the explanation for security sensitive operation ‘Modify Job Class’ |
Prevents user from modifying the Argent Job Control Panel |
Modify BATCH Settings | Modify the Argent Queue Engine server general settings and startup jobs | Prevents users from modifying the Argent Queue Engine properties within the Job Control Panel. |
View Job Reports | View reports with the Argent Job Control Panel. This security setting is solely for viewing job reports. | Prevents users from viewing reports |
Explicit Groups Needed To Perform This Operation
It defines the users or groups of users allowed to perform the associated operation. To restrict access to one or more valid W200x group names, simply select the User/Group(s) from the drop-down list.
To add a new group, click on the icon to display the User Groups window. Select the User/Group to which the new user belongs and click Apply.
Example
A site can define an W200x security group called the Argent Job Scheduler_SERVICE, and then specify the Argent Job Scheduler_SERVICE in the Security tab field Explicit Groups Needed To Perform This Operation.
In this manner, only users with W200x accounts that explicitly are members of the W200x group Argent Job Scheduler_SERVICE will be able to perform Argent Job Scheduler service functions.
Test Groups Against Security Requirements
Select this option to check the privileges given to the current user.
Click on Test Groups Against Security Requirements button to display the Test Security Requirement window. Only the currently logged on account is checked. The privileges given to that user are then displayed.
Current User Is A Member Of…
This field lists the groups to which the current user belongs.