The Privilege troubleshooter is a tool that helps you investigate the allocation of user privileges in your Security Center system.
Privileges control the actions available to users in Security Center. These privileges can be defined for individual users or inherited from user groups. The Privilege troubleshooter examines the allocation of privileges in your system, helping you to verify user permissions and fix issues.
- Who has permission to work with a selected entity
- What privileges are granted to selected users or groups
- Who has been granted a privilege, has access to a specific entity, or both
About using the tool
You can open the Privilege troubleshooter from the Tools menu in Config Tool if you have the following privileges:
- View user properties
- View user group properties
The tool opens in a separate window that is divided into three views in which you can investigate entities, users, or privileges.
- The Export button is only visible if you have the Print and export reports privilege. If you don’t have the Single user print/export privilege, a second user who does have that privilege must enter their credentials to authorize the export.
- If you filter the results using the search bar, only the visible results are exported.
- The exported data cannot be used as part of a scheduled task or a hot action.
- When there are more than 2,000 results, only the CSV format is supported.
Entity view
The Entity view shows which users or user groups have permissions (administrative privileges) over the selected entity. If access to the entity is restricted to a specific partition, these users also have access to that partition.
- View
- View the properties of the selected entity.
- Modify
- Modify the properties of the selected entity.
- Add
- Add entities of the same type as the selected entity to the partition where the selected entity is found.
- Delete
- Delete the selected entity.
User view
The User view shows the full allocation of privileges to a selected user or group.
Privilege view
The Privilege view shows which users or user groups have been granted a selected privilege, and if applicable, access to a selected partition. The partition filter, entitled Entity, is only available if the selected privilege relates to an entity type.