How do I restrict users from accessing All Computers in the DSM explorer

Document ID : KB000026997
Last Modified Date : 30/04/2018
Show Technical Document Details
Introduction:

How do I restrict users from accessing All Computers in the DSM explorer such that the user cannot deploy software or manage these computers?

Environment:
CA Client Automation - All Versions
Instructions:
  1. Create a new profile under Security->Security Profiles containing all the users/groups which need to be restricted.
     
  2. Right click All computers and select Permissions in the DSM Explorer.

    User-added image
     
  3. Select the profile and set the object access to "No Access".

    User-added image

    Now this profile cannot access the All Computers group.

    Giving the users View or Read permissions will allows them to view and read information from All Computers but does not give them the ability to execute a Software Package on these units.

    Note: In the above example the group "Testers" is mapped.
     
Additional Information:
There is an example defined in the DSM Explorer Help under Common Security -> Security Scenario - Software Delivery.  https://docops.ca.com/ca-client-automation/14-0/en/using/dsm-explorer/common-security/security-scenario-software-delivery