We are trying to achieve a specific set of permissions which prohibits the unified administrator role from accessing the Repository. The goal is to not allow the user to view or edit the Repository while maintaining the other permissions of the unifiedadmin role. See https://docs.bmc.com/docs/display/tsps107/Permissions+reference for the complete listing of permissions granted to the Unified Administrator role.
The thought is that disabling the permission labelled - Allow Infrastructure Management PATROL repository management permission will restrict the user from viewing the repository details. The permission is supposed to allow or restrict users from accessing the repository details, but it is not working correctly.
We also tried removing the Allow access to infrastructure monitoring administration permission, but this level of permissions is too restrictive.
While it works (the Repository is not visible anymore) it does not meet the requirements where the users need to have access to the Managed Devices or the TSIM Operator Console, Monitoring Policies, etc.
Upon review with BMC Engineering it was found that the permission is not working correctly; therefore, defect DRTPC-58 has been created for TSPS 10.7
BMC has released Hotfix 10.7.00.003.009 to address this issue. Users must be running 10.7 Fix Pack 3 to apply this hotfix.