UTM applications generally comprise a large number of services. Some of these must be available to all users, while others must only be accessible to certain users. In the case of services that have access to sensitive data, it makes sense to restrict access to a few selected users. In addition, access can be further restricted by permitting security-relevant accesses only via specific LTERM partners (access points). openUTM therefore offers you the opportunity of specifying subtly differentiated, multi-level access rights in the configuration of a UTM application.

openUTM offers you two access control methods for this. These offer the same options for differentiation but use different concepts for viewing the UTM objects:

• the user-oriented lock/key code concept

• the role-oriented access list concept

The two methods can be combined in a single application, but you must opt for one of the two methods for a specific object.