Rights and permissions required for Service Mapping

Service Mapping user needs to have special rights and permissions to access some applications and network devices.

Table 1. Applications and network devices requiring special rights and permissions
CI Rights and permissions
BIG-IP Local Traffic Manager (LTM ) F5 (on F5 BIG-IP) and BIG-IP Global Traffic Manager (GTM) F5 Provide a user with either Administrator or Resource Administrator user role necessary to run:
  • bigpipe commands (for BIG-IP LTM F5 or BIT-IP GTM F5 version 9)
  • bigpipe and tmsh commands (for BIG-IP LTM F5 or BIT-IP GTM F5 version 10)
  • Traffic Management Shell (TMSH) commands (for BIG-IP LTM F5 or BIT-IP GTM F5 version 11)
  • Traffic Management Shell (TMSH) advanced commands (for BIG-IP LTM F5 or BIT-IP GTM F5 version 10, 11, and 12)
Citrix XenApp, Citrix Presentation Server Provide a user who has permissions
  • To run Citrix services
  • To read and query the Citrix repository
IBM DB2 (on Linux) (For storage discovery only) Provide a DB2 OS user who has permissions to run DB2 services.
IBM DB2 (on Windows) (For storage discovery only) Provide a DB2 OS user who has permissions to run DB2 services.
IBM WebSphere Message Broker Flow (on Unix or Windows), IBM WebSphere Message Broker (on Unix or Windows) Provide an IBM WebSphere Message Broker OS user with permissions to run the WebSphere Message Broker service.
IBM WebSphere MQ (on Unix or Windows), IBM WebSphere MQ Queue Provide an IBM WebSphere MQ OS user with permissions to run the WebSphere MQ services.
Microsoft Active Directory Provide credentials for domain administrator.
Microsoft Exchange CAS (on Windows)

(For Exchange CAS 2007 and 2010) Provide an Exchange Mailbox OS user with the rights to run Exchange services on Windows and has permission to query Exchange repository.

Caution: Do not use the dollar sign ($) in credentials for Exchange CAS, because Service Mapping uses the dollar sign in pattern variables.
Microsoft .NET Provide a IIS Virtual Directory OS user with the rights to run the IIS service on Windows.
Microsoft Exchange Hub Transport Server (on Windows), Microsoft Exchange Mailbox (on Windows)
(For Exchange Server 2007 and 2010) Provide a user for the Exchange Mailbox OS with permissions:
  • To run Exchange services on Windows
  • To query Exchange repository
Caution: Do not use the dollar sign ($) in credentials for Exchange Hub Transport Server and Exchange Mailbox, because Service Mapping uses the dollar sign in pattern variables.
Microsoft SharePoint
Provide a SharePoint OS user with permissions:
  • To run SharePoint services on Windows
  • To log into the SharePoint Admin page
Microsoft SQL Server For discovering Microsoft Biztalk using SQL queries, provide a user and credentials for Microsoft BizTalk.
MySQL Server (on Windows or Linux) Provide a user and credentials for the MySQL instance that you discover.
Tibco EMS Configure applicative credentials for EMS Management console.
Tibco EMS Queue Configure applicative credentials for EMS Management console.
The following SAP applications:
  • ABAP SAP Central Services (ASCS)
  • SAP Central Instance (CI)
  • SAP Netweaver Development Infrastructure
  • SAP Evaluated Receipt Settlement (ERS)
  • SAP Java Cluster
  • SAP Central Services (SCS)
Provide a user with permissions to run SOAP on RFC read table function.
SQL Server Reporting Server (SSRS) Provide an SSRS OS user with permissions to run the SSRS Service.