Open Access can be configured in one of three ways:
- During the setup process following installation.
- By browsing to
SquaredUpServershould be replaced by the name of the server where SquaredUp is installed).
- If the setup wizard is unable to configure Open Access you can manually configure Open Access by following the instructions below:
Give the SquaredUp application pool account read-only permissions in SCOM:
- If SquaredUp is installed on a Management Server, add NT AUTHORITY\Network Service to a Read Only SCOM role.
- If SquaredUp is installed on a single dedicated server, add the server account (e.g. myserver$) to a Read Only SCOM role.
The SCOM management console does not allow you to add computer or service accounts directly to a SCOM role. Instead you will need to use Set-SCOMUserRole PowerShell cmdlet to add these users.
To open the Operations Manager Shell, click Start, click All Programs, click Microsoft System Center 2012, click Operations Manager, and then click Operations Manager Shell.
Complete the following:
Run the following command in your SCOM powershell.
Get-SCOMUserRole | select Name,Id | ft -auto
From the list output select your operations manager read-only group ID and save it as the following variable.
$RG = 'Your Group ID'
From the above list select the name of your read-only group and save as the following variable.
$mg = Get-SCOMManagementGroup
Run the following command, this will get the security role previously set.
$role = $mg.Security.GetUserRole($RG)
You need to add your SquaredUp server to the security role you can do this by running the following command.
Finally run the update command to add this to the role.
Alternatively you can first add the server account to an Active Directory security group and then add the security group to the SCOM role.
For a more in depth look at how Open Access works you may like to watch the webinar below (40 mins):