What you can do with the Questra IDM Application Suite will depend on both your role and your permission(s). Your role, such as Technician or Manager, generally defines your responsibilities, and it identifies which permissions have been assigned to you. The permissions, in turn, grant you access to those system features that you will need to use.
There are several default roles and other custom roles can be created by administrators. Likewise, there are several default permissions and other custom permission can be created.
|
Application Administrator |
Able to affect all ongoing operational aspects of the system. |
|
Business Analyst |
Works outside of daily operations to identify business and device trends that affect the business. |
|
Default User |
The default role. |
|
Manager |
Responsible for successful operation of devices, with the permission for certain device-related tasks. |
|
SoftwareDirector Manager |
Responsible for the creation and management of configurations and software packages and the association of configurations to devices. Has overall responsibility for all device configurations. |
|
SoftwareDirector User |
Responsible for updating software on a device or a group of devices for which he or she has granted permission to manage. |
|
System Administrator |
Most trusted role, with ability to modify all aspects of the system. |
|
System Info View |
Able to view the system event logs, software version, and software license. Typically assigned to support personnel. |
|
Technician |
Responsible for the health and operation of a device, with the ability to affect device operations. |
NOTE: The term asset where it appears means the same thing as device.
|
Device View |
(Also called "Asset View.") Permission to read device profiles and any stored readings from devices in groups owned by the user. Permission also for read-only access to device schedules, device uploaded files, file transfer logs, alarms/alerts raised by device and to view charts, for devices in owned groups. |
|
Device Management |
(Also called "Asset Management.") Includes "Device View" plus permission to manage and interact with devices in groups owned by the user, including interacting directly with them to request readings, set attributes, run diagnostics, and request file transfers. Permission to create, modify, and delete device schedules and to acknowledge alerts applied to devices in owned groups. |
|
Device Admin |
(Also called "Asset Admin.") Includes "Device View" and "Device Management" plus permission to create, update, and delete devices in groups owned by the user. |
|
Device Type Admin |
(Also called "Asset Type Admin.") Permission to create, read, update, and delete device types, including configuring available commands and properties, thereby establishing the underlying capability of all devices of the associated device type. Not limited by the user's group ownership. |
|
User Admin |
Permission to create, update, and delete users, to assign their security roles, and to associate them as owners of any groups owned by the user. Permission also to create new permissions and new roles and to assign permissions to roles. |
|
Group Admin |
Permission to create, update, and delete sub-groups within any group owned by the user. Permission to create, update, and delete customers and to assign customers to owned groups. |
|
Alert Admin |
Permission to create, update, and delete alarms and alerts and to configure the Email Alert format. This is the underlying alarm and alert configuration, not specific to any operations, and is not limited by the user's group ownership. |
|
System Admin |
Permission to modify the system configuration information, including extended reports integration. If an owner of the Root group, this user can create, update, and delete groups, device types, devices, and users anywhere the system. |
|
Reports View |
Permission to view any of the reports that have previously run for devices in groups owned by the user. |
|
Reports Execute |
Permission to run and view any reports for devices in groups owned by the user. |
|
Reports Admin |
Permission to schedule, execute, and view any reports for devices in groups owned by the user. |
|
Remote Desktop |
Permission to run the Questra TotalAccess application (which includes the Remote Desktop function) on devices in groups owned by the user. |
|
SoftwareDirector Admin |
Permission to create and update software distribution packages for devices in groups owned by the user. Requires CMDB User permission to add prerequisite and resulting configuration constraints to software packages. |
|
SoftwareDirector User |
Permission to view software distribution packages and to schedule software updates for devices in groups owned by the user. |
|
CMDB Admin |
Permission to create and update configurations in the Configuration Management Database (CMDB), not limited by the user's group ownership. |
|
CMDB User |
Permission to view actual configurations of the devices in groups owned by the user. |
|
SiteVisit Admin |
Permission to create, edit, and assign new site visits for devices in groups owned by the user. |
|
SiteVisit User |
Permission to view and update the assigned site visits (via the Questra Courier application or other web services). |
|
Dynamic Group Admin |
Permission to create, edit, delete, and evaluate dynamic group definitions. |
|
System Info View |
Permission to view system information including system event logs, software version, and software license |