Maximo

So in prepping for move to MAS I setup the License Usage Monitor application in a 7.6.1.3 to see how we look on our Lic Utilization.

Looks to have worked great and we have identified a couple potential issues with some overages on our Limited Lic and expectation that the users that got picked up buy Limited are to be in our Express Licenses.

How has anyone been able to easily identify when I have a Security Group that it makes a user move from Express to Limited or Limited to Authorized? The OOTB Security Group Report is junk as it mixes in Menu options and things that are not even real applications like "Data Sheet Template" & "Maximo API's Asset Definition Change" calling them an "APPLICATION" along with all the other API things that really just clutter up the list. Not to mention it does not even add the concept of Module to the Report to guide for License Usage.

I am trying to go through the security group report to find what Apps I have Save, Create or Delete permissions on to see if it pushes me to using another module aka lic tier but its a real hassle. This seems like something IBM should make easier to be able to identify my License usage more accurately.

Pleas advise if anyone else has had this similar issue. There seems t9o be a total disconnect in the app from User to License Type to Security Group Settings?

So in prepping for move to MAS I setup the License Usage Monitor application in a 7.6.1.3 to see how we look on our Lic Utilization.

Looks to have worked great and we have identified a couple potential issues with some overages on our Limited Lic and expectation that the users that got picked up buy Limited are to be in our Express Licenses.

How has anyone been able to easily identify when I have a Security Group that it makes a user move from Express to Limited or Limited to Authorized? The OOTB Security Group Report is junk as it mixes in Menu options and things that are not even real applications like "Data Sheet Template" & "Maximo API's Asset Definition Change" calling them an "APPLICATION" along with all the other API things that really just clutter up the list. Not to mention it does not even add the concept of Module to the Report to guide for License Usage.

I am trying to go through the security group report to find what Apps I have Save, Create or Delete permissions on to see if it pushes me to using another module aka lic tier but its a real hassle. This seems like something IBM should make easier to be able to identify my License usage more accurately.

Pleas advise if anyone else has had this similar issue. There seems t9o be a total disconnect in the app from User to License Type to Security Group Settings?

It's not clear if you have already traded up to MAS app points or if you're on 7.6.X and preparing to trade up. If you have already traded up, we do not have an Express equivalent in MAS so it may not be worth the effort to investigate. All Express & Limited users in 7.6.X would map to Limited in MAS. If you're still on 7.6.X licensing, you'll want to ensure you investigate because you need to stay compliant on that licensing type. 

As Manoj mentioned, we have a new utility for helping calculating in MAS terms. Why it calculated a user a specific way (IE Base instead of Limited) isn't something we display still. 

We don't try to calculate a licensing type requirement for security groups (IE TECHNICIAN group is Limited) because it would be confusing to administrators. Most customers put a user in multiple security groups. It would be possible to have a user in 2 Limited security groups that would actually result in the user becoming Authorized (in 7.6.X terms) or Base/Premium (in MAS terms). This is because each security group may have 3 or fewer modules with write access but when you combine the permissions across groups, they now have 4+ modules.

A query I've provided customers in the past that wanted to analyze access at that group level is below:

select maxapps.app,maxapps.description,applicationauth.groupname,1 as readaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='SAVE') then 1 else 0 end saveaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='INSERT') then 1 else 0 end insertaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='DELETE') then 1 else 0 end deleteaccess,
(select moduleapp from maxmenu where elementtype='APP' and keyvalue=maxapps.app and rownum=1) module
from maxapps
inner join applicationauth on maxapps.app=applicationauth.app and applicationauth.optionname='READ'
where maxapps.apptype!='OS'
and groupname='INSPECTOR'
order by groupname,app;

So in prepping for move to MAS I setup the License Usage Monitor application in a 7.6.1.3 to see how we look on our Lic Utilization.

Looks to have worked great and we have identified a couple potential issues with some overages on our Limited Lic and expectation that the users that got picked up buy Limited are to be in our Express Licenses.

How has anyone been able to easily identify when I have a Security Group that it makes a user move from Express to Limited or Limited to Authorized? The OOTB Security Group Report is junk as it mixes in Menu options and things that are not even real applications like "Data Sheet Template" & "Maximo API's Asset Definition Change" calling them an "APPLICATION" along with all the other API things that really just clutter up the list. Not to mention it does not even add the concept of Module to the Report to guide for License Usage.

I am trying to go through the security group report to find what Apps I have Save, Create or Delete permissions on to see if it pushes me to using another module aka lic tier but its a real hassle. This seems like something IBM should make easier to be able to identify my License usage more accurately.

Pleas advise if anyone else has had this similar issue. There seems t9o be a total disconnect in the app from User to License Type to Security Group Settings?

It's not clear if you have already traded up to MAS app points or if you're on 7.6.X and preparing to trade up. If you have already traded up, we do not have an Express equivalent in MAS so it may not be worth the effort to investigate. All Express & Limited users in 7.6.X would map to Limited in MAS. If you're still on 7.6.X licensing, you'll want to ensure you investigate because you need to stay compliant on that licensing type. 

As Manoj mentioned, we have a new utility for helping calculating in MAS terms. Why it calculated a user a specific way (IE Base instead of Limited) isn't something we display still. 

We don't try to calculate a licensing type requirement for security groups (IE TECHNICIAN group is Limited) because it would be confusing to administrators. Most customers put a user in multiple security groups. It would be possible to have a user in 2 Limited security groups that would actually result in the user becoming Authorized (in 7.6.X terms) or Base/Premium (in MAS terms). This is because each security group may have 3 or fewer modules with write access but when you combine the permissions across groups, they now have 4+ modules.

A query I've provided customers in the past that wanted to analyze access at that group level is below:

select maxapps.app,maxapps.description,applicationauth.groupname,1 as readaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='SAVE') then 1 else 0 end saveaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='INSERT') then 1 else 0 end insertaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='DELETE') then 1 else 0 end deleteaccess,
(select moduleapp from maxmenu where elementtype='APP' and keyvalue=maxapps.app and rownum=1) module
from maxapps
inner join applicationauth on maxapps.app=applicationauth.app and applicationauth.optionname='READ'
where maxapps.apptype!='OS'
and groupname='INSPECTOR'
order by groupname,app;

So in prepping for move to MAS I setup the License Usage Monitor application in a 7.6.1.3 to see how we look on our Lic Utilization.

Looks to have worked great and we have identified a couple potential issues with some overages on our Limited Lic and expectation that the users that got picked up buy Limited are to be in our Express Licenses.

How has anyone been able to easily identify when I have a Security Group that it makes a user move from Express to Limited or Limited to Authorized? The OOTB Security Group Report is junk as it mixes in Menu options and things that are not even real applications like "Data Sheet Template" & "Maximo API's Asset Definition Change" calling them an "APPLICATION" along with all the other API things that really just clutter up the list. Not to mention it does not even add the concept of Module to the Report to guide for License Usage.

I am trying to go through the security group report to find what Apps I have Save, Create or Delete permissions on to see if it pushes me to using another module aka lic tier but its a real hassle. This seems like something IBM should make easier to be able to identify my License usage more accurately.

Pleas advise if anyone else has had this similar issue. There seems t9o be a total disconnect in the app from User to License Type to Security Group Settings?

So I do have a question as we just identified our problem that is making a bunch of users be a lic level higher then we expected. Somehow we got the following in this query you gave us:

That app is pushing users into a additional module. But I do not see the App in App Designer nor do I find the options in the Security Group setup to turn it off on that group???

I know this is Calibration related but this client has no Industry Solutions and no idea how this got activated??? There is supposed to be a application per this doc I found:

Data Sheets Tab Data sheets play a crucial part in the management of assets that require calibration.  Data sheets provide technicians with the information that they need to perform a calibration. A data sheet is a template that defines the specifications of an asset for the calibration process. Only the steps that detail the use of the Data Sheet Tab in the Asset Template are outlined below. 1. Access the Asset Template record in the Asset Template Application of the Asset Module. 2. Navigate to the Data Sheets Tab. 3. If Data Sheets have not been created, they must be created through the Data Sheet Template Application of the Planning Module. (See Note below) Note:  Although the Data Sheet Template Application's detailed instructions are not part of this process document.  Some screen shots of the application are shown below as an example of some of the information required to set-up the Data Sheet Template.  Maximo Help Files for the Data Sheet Template Application are a good source of information for creating a Data Sheet Template.

It's not clear if you have already traded up to MAS app points or if you're on 7.6.X and preparing to trade up. If you have already traded up, we do not have an Express equivalent in MAS so it may not be worth the effort to investigate. All Express & Limited users in 7.6.X would map to Limited in MAS. If you're still on 7.6.X licensing, you'll want to ensure you investigate because you need to stay compliant on that licensing type. 

As Manoj mentioned, we have a new utility for helping calculating in MAS terms. Why it calculated a user a specific way (IE Base instead of Limited) isn't something we display still. 

We don't try to calculate a licensing type requirement for security groups (IE TECHNICIAN group is Limited) because it would be confusing to administrators. Most customers put a user in multiple security groups. It would be possible to have a user in 2 Limited security groups that would actually result in the user becoming Authorized (in 7.6.X terms) or Base/Premium (in MAS terms). This is because each security group may have 3 or fewer modules with write access but when you combine the permissions across groups, they now have 4+ modules.

A query I've provided customers in the past that wanted to analyze access at that group level is below:

select maxapps.app,maxapps.description,applicationauth.groupname,1 as readaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='SAVE') then 1 else 0 end saveaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='INSERT') then 1 else 0 end insertaccess,
case when exists(select 1 from applicationauth z where z.groupname=applicationauth.groupname and z.app=maxapps.app and z.optionname='DELETE') then 1 else 0 end deleteaccess,
(select moduleapp from maxmenu where elementtype='APP' and keyvalue=maxapps.app and rownum=1) module
from maxapps
inner join applicationauth on maxapps.app=applicationauth.app and applicationauth.optionname='READ'
where maxapps.apptype!='OS'
and groupname='INSPECTOR'
order by groupname,app;

So in prepping for move to MAS I setup the License Usage Monitor application in a 7.6.1.3 to see how we look on our Lic Utilization.

Looks to have worked great and we have identified a couple potential issues with some overages on our Limited Lic and expectation that the users that got picked up buy Limited are to be in our Express Licenses.

How has anyone been able to easily identify when I have a Security Group that it makes a user move from Express to Limited or Limited to Authorized? The OOTB Security Group Report is junk as it mixes in Menu options and things that are not even real applications like "Data Sheet Template" & "Maximo API's Asset Definition Change" calling them an "APPLICATION" along with all the other API things that really just clutter up the list. Not to mention it does not even add the concept of Module to the Report to guide for License Usage.

I am trying to go through the security group report to find what Apps I have Save, Create or Delete permissions on to see if it pushes me to using another module aka lic tier but its a real hassle. This seems like something IBM should make easier to be able to identify my License usage more accurately.

Pleas advise if anyone else has had this similar issue. There seems t9o be a total disconnect in the app from User to License Type to Security Group Settings?

So in prepping for move to MAS I setup the License Usage Monitor application in a 7.6.1.3 to see how we look on our Lic Utilization.

Looks to have worked great and we have identified a couple potential issues with some overages on our Limited Lic and expectation that the users that got picked up buy Limited are to be in our Express Licenses.

How has anyone been able to easily identify when I have a Security Group that it makes a user move from Express to Limited or Limited to Authorized? The OOTB Security Group Report is junk as it mixes in Menu options and things that are not even real applications like "Data Sheet Template" & "Maximo API's Asset Definition Change" calling them an "APPLICATION" along with all the other API things that really just clutter up the list. Not to mention it does not even add the concept of Module to the Report to guide for License Usage.

I am trying to go through the security group report to find what Apps I have Save, Create or Delete permissions on to see if it pushes me to using another module aka lic tier but its a real hassle. This seems like something IBM should make easier to be able to identify my License usage more accurately.

Pleas advise if anyone else has had this similar issue. There seems t9o be a total disconnect in the app from User to License Type to Security Group Settings?