Controlling user access to configuration items

TADDM controls user access to configuration items through the use of access collections, roles, and permissions.

Access control to configuration items is established by the following process:
  1. Configuration items are aggregated into access collections.
  2. Roles are defined that aggregate sets of permissions.
  3. Users or user groups are defined, and roles are assigned to each user or user group to grant specific permissions (for specific access collections) to that user.

In the context of security in TADDM, a user is a person who is given access to configuration items, and a user group is several users who have the same roles or permissions.

You can create users and user groups in the Data Management Portal. The access of users and user groups to configuration items is defined by the roles and access collections that you assign to each user or user group. You can change these assignments at any time.