Cisco Cisco Process Orchestrator 2.X 사용자 가이드

This section provides basic information on managing the security administration for the users, objects 
accessed and controlled by the processes of TEO. 

Security roles determine what permissions are granted to users. Users can be assigned to the appropriate 
groups in Windows Computer Management using the TEO Security function. On the Security view, 
customers can determine what TEO objects, users are allowed to view, create, or modify. A TEO 
administrator can limit users access to only a subset of TEO processes or limit a whole group to 
read-only access for specific objects.

For example, the TEO admin can configure members of the Accounting Process Authors group with the 
ability to only create, delete, modify or schedule processes in the Accounting category. However, those 
members of that group will not be allowed to view or modify any other processes in TEO.

If the user has permissions to view (or edit) only a subset of TEO objects, when the TEO user interfaces 
(Console, CLI or Web Service) display TEO objects to the user, the display will only show those objects 
that the user has permissions to view or modify.

When the user does not have sufficient permissions in TEO to perform an operation and then attempts 
to perform that operation, TEO will generate an error, as well as log an audit failure event to the event 
log.

The following sections provide details on the Security feature in TEO: