12.4. Delegating Permissions for Remote Execution
- Remote Execution Manager: This role allows access to all remote execution features and functionality.
- Remote Execution User: This role only allows running jobs; it does not provide permission to modify job templates.
view_job_templatespermission, the user can only see and trigger jobs based on matching job templates. You can use the
view_smart_proxiespermissions to limit which hosts or Capsules are visible to the role.
execute_template_invocationpermission is a special permission that is checked immediately before execution of a job begins. This permission defines which job template you can run on a particular host. This allows for even more granularity when specifying permissions. For more information on working with roles and permissions see Creating and Managing Roles in the Server Administration Guide.
name = Reboot and host.name = staging.example.com name = Reboot and host.name ~ *.staging.example.com name = "Restart service" and host_group.name = webservers