The Authorization server is a component within the OpenEdge Command Center server. It is responsible for managing user access to systems such as the OpenEdge Command Center server, the OpenEdge Command Center agent, and the Authorization server and their resources. It provides a framework for defining and enforcing authorization policies using Role-Based Access Control (RBAC). With RBAC, your access to the systems and their resources is determined by your assigned role. Each role comes with a predefined set of permissions that define the actions you are authorized to perform. For information about roles, see Roles in Authorization server.

The Authorization server starts automatically upon the initial startup of the OpenEdge Command Center server. Upon the startup, a set of predefined roles is provisioned within the Authorization server. These roles enforce access control for the OpenEdge Command Center server and Authorization server.

In addition, the Authorization server enforces access control for the OpenEdge Command Center agent based on its bootstrap policy. For information about the bootstrap policy, see Bootstrap policy file. Currently, the access control is applicable at the agent level. This means the users assigned with appropriate roles can access all the PAS for OpenEdge instances and OpenEdge databases that the agent manages.

The Authorization server provides user and role management capabilities. You can create users, assign roles, and remove roles in the Authorization server through Authorization server REST APIs. For more information, see Create users and manage roles using Authorization server.