New Security Features in Operations Manager 2007

Applies To: Operations Manager 2007 R2, Operations Manager 2007 SP1

The following sections describe security-related features available in Operations Manager 2007 that were not available in Microsoft Operations Manager (MOM) 2005.

Run As Accounts and Run As Profiles

In MOM 2005, the running of all rules and responses used credentials from a single action account, and therefore, the action account needed sufficient rights for all monitored applications. Operations Manager 2007 introduces Run As Accounts and Run As Profiles. Multiple Run As Accounts can monitor multiple applications or components and allow you to create credentials with the least amount of privileges necessary for the desired task.

Run As Accounts allow you to manage all passwords and accounts for the entire management group from one location, the root management server.

User Roles

You can access and manipulate Operations Manager 2007 through several methods: through the Operations console, the Web console, Windows PowerShell, or custom applications. In all cases, role-based security ensures that the user credentials supplied are members of a user role in Operations Manager 2007.