Use Case Scenario
Scott is a (normal) user in ACME Corporation who has access to Message Box (Queries) and Tracking Data/Message Flow section in BizTalk360. The business requirement is that Scott should only be responsible to monitor the status of service instances and messages that pass through the BizTalk server, and should not be able to view/download the context and content of the messages since they contain confidential information. It is the duty of Bob, who is the Super user (administrator), to set up the access restrictions for Scott's user profile.
To set up the access restriction, Bob must first set up the application level restriction for Scott in order to be able to set up the restriction for message context/content information. If Scott only requires access to few applications, say A_THROTTLING_APP_01 and BTS2013002_CustomerOrderRouting, in the environment, Bob must select the applications first and then set up the restriction on the message context/content information. To do this, Bob must:
- Log in to the application
- Click the Settings icon at the top of the page
- Click User Access Policy from the left menu bar
- Click Add New to add a new user (Scott) to the system
User/Group Name – Enter the user name as 'scott'
Domain Name – Enter the domain name. If setting up the user on a local machine that is not a part of the domain, enter the machine name as the domain name.
- Is Super User – This option should not be selected since scott is a normal user and requires restricted access to the application
Environments – Select the environment for which scott needs to have access
- Click => to set up the applications that scott access in the environment (if required)
- Select the applications A_THROTTLING_APP_01 and BTS2013002_CustomerOrderRouting that scott will have access in the environment.
- Click => to set up the permissions
- In this section, Bob needs to select the check box against Message Box Queries and Tracking Data/Message Flow under Can Access Data section. But Bob must not select the check box against Messages Content/Context. By doing this, Scott will only have access to the specific two applications and can only view the status of the messages in Message Box (Queries) and Tracking Data/Message Flow sections in the application. Scott cannot view the Message content/context information.
- Click OK in the Permissions screen to create scott's information into the system
Click the sliders to view the process of creating Scott's user information.
Once Scott's information is available in the system and when he logs in to BizTalk360, he will only see the selected applications under the Applications section on the left menu bar. He will see the Message Box (Queries) and Tracking Data/Message Flow sections below Applications in the left menu bar. When Scott tries to execute a query and view the status of the messages, he will only see the message details but not the Message content and Message context details.