Home
Configuring
Configure your environment.
Managing Workload Security
You can manage security settings in your environment both from the Orchestration CLI and the Dynamic Workload Console.

Configuring
Configure your environment.
- Configuring an agent
  In this topic you can find information about how to configure an agent.
- Configuring Orchestration CLI
  The extension for Orchestration CLI is bundled with the product. If required, you can download it as a stand-alone feature also.
- Managing Workload Security
  You can manage security settings in your environment both from the Orchestration CLI and the Dynamic Workload Console.
  - Managing access control list from the Orchestration CLI
  - Managing access control list Dynamic Workload Console
  - Managing security roles from the Orchestration CLI
    In this topic you can find the syntax to create a security role.
  - Managing security roles from the Dynamic Workload Console
  - Managing security access
  - Actions on security items
  - Attributes for item types
  - Managing authentication using API Keys
    Learn what API Keys are and how they can secure authentication quickly and easily.
- Configuring the Dynamic Workload Console for Single Sign-On
  Configure the Dynamic Workload Console for Single Sign-On.
- Configuring High Availability
  Performance can be highly improved by configuring multiple Dynamic Workload Console instances in a High Availability configuration, so as to have multiple console instances working at the same time and with the same repository settings.
- Configuring a user registry
  In this topic you can find information about how to configure a user registry.
- Customizing your global settings
  Learn how to customize advanced settings of the Dynamic Workload Console.

Managing Workload Security

You can manage security settings in your environment both from the Orchestration CLI and the Dynamic Workload Console.

You can work with the following security items:

Access control list: Each access control list assigns security roles to users or groups, in a certain folder.

Security roles: Each role represents a certain level of authorization that defines the set of actions that users or groups can perform on a set of item types.

Folders: Each folder has its own level of authorization that defines the set of actions that users or groups can perform on each folder.

During the startup, HCL Universal Orchestrator creates a FULL_CONTROL standard role, which contains all the permissions for all the resources.

Four administrative roles are created as well. The following table lists the four administrative roles with the related permissions:


Administrative role	Permissions
API_KEY_PERSONAL	CREATEPERSONALAPIKEY
API_KEY_SERVICE	CREATESERVICEAPIKEY
API_KEY_ADMINISTRATOR	DELETEALLAPIKEYS LISTALLAPIKEYS
REGISTER_AGENT	REGISTERAGENT

Security setting can be managed both from the Orchestration CLI and the Dynamic Workload Console. You can find further information in the following topics:

Managing access control list

Managing security roles