If you’ve tinkered with security roles for role-based administration in System Center 2012 Configuration Manager, you might have noticed that there are a ton of permissions and permission groups involved. This is most evident when you copy a built-in security group to modify for your own use. Keeping straight which roles use which permissions, and from which permission groups is a bit nutty.
To help me sort these combinations, I compiled a matrix of the built-in security roles, the permission groups each role uses, and the individual permissions for each group for each role, and thought I’d share it in the hopes it brings value to others.
Is this spreadsheet going to answer your questions about when to use a specific permission from a specific group to grant some level of access? Unfortunately not. That’s beyond the current information available to me.
I’ve uploaded a copy of my spreadsheet at the Gallery on TechNet, and you can find it at the following link. I’ll point out here that this is offered ‘as is’, with no guarantees for expansion or revisions.
On the TechNet Gallery: http://gallery.technet.microsoft.com/Matrix-of-Role-Based-d6318b96
This posting is provided “AS IS” with no warranties and confers no rights.