Submit a ticketCall us

Training Class Getting Started with SolarWinds Backup - February 28

This course offers customers an introduction to SolarWinds Backup, focusing on configuring the backup technology, taking backups, data restoration and data security. It is a great primer and will get you up to speed quickly on SolarWinds Backup.
Register for class.

Home > Success Center > Patch Manager > Patch Manager 2.1.5 Administrator Guide > Manage users and security > Default roles

Default roles

Created by Caroline Juszczak, last modified by Steve.Hawkins on Mar 12, 2018

Views: 437 Votes: 0 Revisions: 5

By default, Patch Manager includes the server local Administrators group in the following security roles:

In Active Directory environments, users in the Domain Admins group are default members of the local Administrator group for all domain members. If you do not want to grant membership to these two Patch Manager security roles to all Domain Admins, modify your Patch Manager security role membership as required.

EminentWare Users

This role grants access to the Patch Manager Console. To use the console, you must be a member of at least one other security role. 

Users in other roles must be a member of this role to access the Patch Manager Console.

EminentWare Enterprise Administrators

This role grants full access to all Patch Manager functionality. This is the only security role authorized to manage memberships in security roles from within the Patch Manager Administrator Console. Microsoft® Windows® users outside of this security role could potentially alter memberships by:

  • Using the MMC Authorization Manager snap-in
  • Altering the EminentWare.BusinessObjects.xml file

Patch Manager uses the AuthZ credential management features native to Windows operating systems. If your deployment includes users who are not in the EminentWare Enterprise Administrators security role with access to the MMC Authorization Manager snap-in, you should revoke that access if possible.

Patch Manager stores all authorizations in the following location: 

%PROGRAMFILES%\SolarWinds\Patch Manager\Server\EminentWare.BusinessObjects.xml

If a local administrator on the Patch Manager server is not a member of the EminentWare Enterprise Administrators security role, block access to this file—if possible, the entire \Server folder.

Last modified