DPA roles and privileges
When you add user accounts in DPA, you assign each user a role. The role determines the user's privileges.
Administrator role
Administrators have access to all DPA functionality, including all setup, administration, and support options.
DPA requires at least one Administrator account, which is created during installation.
Only administrators can perform certain actions, such as:
- Register and unregister database instances and VMs
- Allocate licenses
- Run advanced support utilities
- Edit system-wide Advanced Options
- Start and stop all monitors
- Create, edit, and delete report schedules
- Create, edit, and delete alert groups
- Configure the mail server
- Administer users, contacts, and contact groups
Read Only on All Instances role
Users with this role can perform the following actions for all database instances:
- View performance data and metrics
- Run reports and view existing report groups
- View existing alerts
- View logs
Custom Privileges role
The Custom Privileges role specifies which privileges a user has, and which database instances these privileges apply to. Use this role to:
- Prevent users from seeing data about certain database instances
- Give users privileges to manage monitoring options, alerts, and reports without granting them full administrative privileges
When you assign this role to a user, you can grant any of the following privileges. Privileges can apply to all database instances or only selected instances.
| Privilege | Actions allowed against selected database instances |
|---|---|
| View Data |
|
| Manage Reports | Create, edit, and delete report groups |
| View Alerts | View existing alerts |
| Manage Alerts |
|
| Manage Monitoring |
Users with Manage Monitoring permissions cannot see the charts at the top of the DPA homepage. |