User roles/rights in the Administration Center
The login and password that were provided to you enable you to get through the authentication page and access Talend Administration Center. Then, as an Administrator, you can define the roles and rights of all other users.
The table below describes the user roles/rights in Talend Administration Center. It details what menus and menu items in the Administration Center each type of user role can have access to and what type of access (read-write or read-only).
Note that modification of roles and rights of a user assigned to a project is taken into account after next startup, if this user is already connected to the project.
Menu/Menu item
|
Rights/Roles |
Description
|
||||||
---|---|---|---|---|---|---|---|---|
Security Administrator |
Administrator |
Operation manager |
Designer |
Viewer |
Auditor |
Administrative Use | ||
Licenses |
w |
- |
- |
- |
- |
- |
w |
View license parameters Set and update license keys |
Configuration |
w (only LDAP, Login Page, SSO) |
w (except LDAP, Login Page, SSO) |
w |
r |
- |
r (only Logs) |
w |
View, set, and edit the web-app configuration |
Users |
w |
- |
- |
- |
- |
- |
w |
Create, edit, and delete users Manage user rights Import and export users |
User groups |
w |
- | - | - | - |
- |
w |
Create, update, and delete user groups |
Projects |
- | w |
r (following project authorization) |
r (following project authorization) |
- |
- |
r |
Create, update, and delete projects |
Locks |
- |
- |
w (following project authorization) |
- |
- |
- |
w (following project authorization) |
Remove locks on items |
Rights Management |
w |
w |
- |
- |
- |
- |
w |
Configure the access level on each module |
Notifications |
- |
w |
w |
- |
- |
- |
w |
Manage the notifications of the Tasks, Users, JobServers, License, and SoftwareUpdate categories |
Software update | - | w | - | - | - |
- |
w | Search for software updates |
Servers |
- |
- |
w |
r |
r |
- |
w |
Create, update, and delete execution servers |
Job Conductor |
- |
- |
w (following project authorization) |
r (following project authorization) |
r (following project authorization) |
- |
w (following project authorization) |
Create, deploy, run, and plan task executions on distant servers |
Big Data Streaming | - |
- |
w (following project authorization) | r (following project authorization) | r (following project authorization) |
- |
w (following project authorization) |
Submit Big Data streaming Jobs on corresponding Storm or Spark servers |
ESB Conductor |
- |
- |
w (following project authorization) |
r |
- |
- |
w (following project authorization) |
Deploy and run ESB applications on distant servers |
Execution Plan |
- |
- |
w (following project authorization) |
r (following project authorization) |
r (following project authorization) |
- |
w (following project authorization) |
A conditioned sequence of tasks: each task execution (except the first) is launched according to the end status of the previous task |
Monitoring |
- |
- |
w (with rights to create connection, following project authorization) |
r |
- |
r (only Logging) |
w (with rights to create connection, following project authorization) |
View Jobs performance analyses |
Service Locator | - | - | w (following project authorization) | r | - |
- |
w (following project authorization) | Monitor live services, up and down times for a service endpoint, and remove unavailable services |
Service Activity Monitoring | - | - | r | r | - |
- |
r | Monitor all events related to requests/responses/faults for services |
Authorization | - | - | w (following project authorization) | r | - |
- |
w (following project authorization) | Manage resources and resource/role assignments |
Service Registry | - | - | w (following project authorization) | r | - |
- |
w (following project authorization) | Allow users to maintain registry resources and resource relations |
- w: read and write access
- r: read-only access
- -: no access
Note that:
- A user with Auditor role cannot have Administrator or Security Administrator at the same time.
- A user with Administrative Use role can only be created if you are using the Talend Data Fabric license, and cannot have Administrator, Security Administrator, Operation manager, or Auditor at the same time.
- A user with r (read-only) right cannot to generate, deploy, and execute Jobs in Talend Administration Center. To be able to perform these operations, the w (read and write) right is required.
- The second person pronoun "you" used through out the document addresses the user of Talend Administration Center depending on his/her roles and rights and not any generic user of the Administration Center.
- The Operation manager, Designer, and Viewer all have read access on Talend Studio (following project authorization). The Designer also has write access.
For more information about the pages you can access through each menu item, see What modules and features are available depending on your license.