Identity Manager 9.3 - Authorization and Authentication Guide

The One Identity Manager tools can only be started if the user has the relevant program function permissions. The following program functions allow the One Identity Manager tools to be started.

To make the program function available to users

In the Designer under the Permissions > Program functions category, check which permissions group contains the required program function and assign the program functions to other permissions groups as necessary.
For non role-based login: Add the system user to the permissions group in the Designer under Permissions > System users.
For role-based logins: Ensure that the user is assigned to the application role that owns the program function through its permissions group.

Table 41: Program functions for starting the One Identity Manager tools
Program function	Description
ApplicationStart_Analyzer	Allows the Analyzer program (Analyzer.exe) to be started.
ApplicationStart_ConfigWizard	Allows the Configuration Wizard program (ConfigWizard.exe) to be started.
ApplicationStart_CryptoConfig	Allows the Crypto Configuration program (CryptoConfig.exe) to be started.
ApplicationStart_DataImporter	Allows the Data Import program (DataImporter.exe) to be started.
ApplicationStart_DBClone	Allows the program (DBClone.exe) to be started.
ApplicationStart_DBComparer	Allows the program (DBComparer.exe) to be started.
ApplicationStart_DBCompiler	Allows the Database Compiler program (DBCompiler.exe) to be started.
ApplicationStart_Designer	Allows the Designer program (Designer.exe) to be started.
ApplicationStart_JobQueueInfo	Allows the Job Queue Info program (JobQueueInfo.exe) to be started.
ApplicationStart_LaunchPad	Allows the Launchpad program (LaunchPad.exe) to be started.
ApplicationStart_LicenseMeter	Allows the License Meter program (LicenseMeter.exe) to be started.
ApplicationStart_Manager	Allows the Manager program (Manager.exe) to be started.
ApplicationStart_ObjectBrowser	Allows the Object Browser program (ObjectBrowser.exe) to be started.
ApplicationStart_OpSupport	Enables start-up of the Operations Support Web Portal.
ApplicationStart_ReportEdit	Allows the Report Editor program (ReportEdit2.exe) to be started.
ApplicationStart_SchemaExtension	Allows the Schema Extension program (SchemaExtension.exe) to be started.
ApplicationStart_ServerInstaller	Allows the Server Installer program (ServerInstaller.exe) to be started.
ApplicationStart_SoftwareLoader	Allows the Software Loader program (SoftwareLoader.exe) to be started.
ApplicationStart_SynchronizationEditor	Allows the Synchronization Editor program (SynchronizationEditor.exe) to be started.
ApplicationStart_SystemDebugger	Allows the System Debugging program (SystemDebugger.exe) to be started.
ApplicationStart_Transporter	Allows the Database Transporter program (Transporter.exe) to be started.
ApplicationStart_WebConfig	Allows the Manager Web Configuration Editor program (WebConfigEditor.exe) to be started.
ApplicationStart_WebInstall	Allows the Web Installer (WebInstaller.exe) to be started.

Related topics

NOTE:

Connections that do not use the expected access level for SQL logins are not shown in the connection dialog.
If you select an existing database connection in the connections dialog, the access level of the login to be used is shown in a tooltip.

You require the following minimum access level for One Identity Manager tools.

Table 42: Access level for One Identity Manager tools
Tool	Minimum access level
Analyzer	End user
Application server	End user or configuration user (depending on the application server's task)
API Server	End user
Configuration Wizard	Administrative user
Crypto Configuration	Configuration user
Data Import	End user Configuration user (saves import definition)
Database Transporter	Configuration user
Database Compiler	Configuration user
DBClone	Administrative user
DBComparer	Configuration user
Designer	Configuration user Some consistency checks require the administrative user access level.
Job Queue Info	Configuration user
Launchpad	End user Some application that are started from the Launchpad, required different access levels
License Meter	End user
Manager	End user Some functions require configuration user access levels, for example, opening synchronization projects for target systems. Some consistency checks require the configuration user or administrative user access level.
Object Browser	End user
One Identity Manager Service	Configuration users for process collection with the MSSQLJobProvider
Report Editor	Configuration user
Schema Extension	Configuration user
Server Installer	Configuration user
Software Loader	Configuration user
Synchronization Editor	Configuration user
System Debugger	Configuration user
Administration Portal	Configuration user
Web Portal	End user
Password Reset Portal	End user
Operations Support Web Portal	Configuration user
AppServer.Installer.CMD.exe	Configuration user
AutoUpdate.exe	Configuration user
DBCompilerCMD.exe	Configuration user
DBConsCheckCmd.exe	End user Some consistency checks require the configuration user or administrative user access level.
DataImporterCMD.exe	End user
DBTransporterCMD.exe	Configuration user
Quantum.MigratorCmd.exe	Administrative user
SchemaExtensionCmd.exe	Configuration user
SoftwareLoaderCMD.exe	Configuration user

Please select your product:

To serve you better, please complete the Purpose of your Chat:

Recommended Solutions for Your Problem

Identity Manager 9.3 - Authorization and Authentication Guide

Program functions for starting the One Identity Manager tools

Related topics

Minimum access levels of One Identity Manager tools

Related topics