Home
Altair Monitor Administrator Guide
Other Configurations
Security
Control Access to Tag Data
There may be situations where company policy may not allow all data to be visible to all users that have access Monitor. This section describes how Monitor can be locked down so that users only have visibility to the data for which he or she is authorized to view. This is made possible by the subsystem access control list (ACL) functionality.

Welcome
What's New
View new features for Monitor 2025.1.0.
Monitor Overview
A real time software license monitoring and management tool.
Monitor Tutorials
Currently there are no Monitor tutorials available.
Getting Started Guide
This manual describes the web user interface and provides instructions on common uses and best practices for users. It also provides the basic setup, installation and management practices for administrators. For both administrators and users, it functions as a getting started guide.
Altair Monitor User Guide
Altair Monitor is a software license tracking tool that reports current and historical license utilization. The license managers that Monitor supports includes FlexNet Publisher, Reprise, LUM, and many others. The primary user interface for accessing Monitor is a web interface.
Altair Monitor Administrator Guide
- Altair Monitor Overview
  This document describes how to configure and manage Altair Monitor.
- Enable CLI Access on UNIX
  This section explains how to set up a UNIX user's shell environment to have a proper context for the user to run installed Altair Accelerator programs from the command line. The programs that are run from the command line are called the CLI commands.
- Enable CLI Access on Windows
  This section explains how to set up a Window user's command prompt environment to have the proper context for the user to run installed Altair Accelerator programs from the command line. The programs that are run from the command line are called the CLI commands.
- Use Monitor Help
  Monitor documentation is available in HTML and PDF format.
- Server Operation
- Failover Server Candidates
  If a server crashes suddenly, VOV has the capability to start a replacement server on a pre-selected host. This capability requires that the pre-selected host is configured as a failover server.
- Daemon Operation
  Although the Monitor daemons are started automatically upon startup, there may be times where a daemon should be restarted. This section describes how to control the Monitor daemons.
- Daemon Manager Utility
  Although the Monitor daemons are started automatically upon startup, there may be times where a daemon should be restarted. This section describes how to control the daemons from the command line (CLI).
- Database
  Monitor stores historical information about jobs in a relational database. As of version 2015.09, the database is fully integrated and managed as part of Monitor. This section provides an overview of the components that run and manage the database.
- Configuring Monitoring
- License Server Management
- Other Configurations
  - Notification
    Monitor includes a facility for e-mailing notifications of events that require attention, such as notifications of license daemons that are down or licenses that are checked out for long periods of time. The vovnotifyd daemon is responsible for sending out notifications.
  - Security
    - User Management
      Monitor manages users, but not passwords. Instead, the server can authenticate users against an LDAP system, or it can use the operating system as an authentication proxy.
    - Security Principles
      Every user possesses a security principle.
    - Control Access to Tag Data
      There may be situations where company policy may not allow all data to be visible to all users that have access Monitor. This section describes how Monitor can be locked down so that users only have visibility to the data for which he or she is authorized to view. This is made possible by the subsystem access control list (ACL) functionality.
    - Security Analysis
      Monitor also provides a security analysis report that aids the administrator in further locking down the various pieces of data that may contain sensitive information.
  - Web Server Configuration
  - Web Interface
  - LDAP Integration
    Monitor includes an interface to LDAP that can provide authentication services, extract user and display user attributes throughout the various pages in the web interface, and drive custom groups of users for reporting purposes.
  - Workweek Definition
- Command Line Operations
- Reference

View All Altair Accelerator Help

Control Access to Tag Data

There may be situations where company policy may not allow all data to be visible to all users that have access Monitor. This section describes how Monitor can be locked down so that users only have visibility to the data for which he or she is authorized to view. This is made possible by the subsystem access control list (ACL) functionality.

This functionality is also used to ensure visibility to tags that are not actively being monitored via sampling, as described in General Monitoring Configuration. This would typically be achieved using the EVERYBODY keyword described below.

Configuring

Tag access is defined in the licmon.swd/vovlmd/config.tcl file using the setTagAccess procedure. This procedure takes two arguments:

A single tag or a list of tags.
A single user name or a list of user names that are to be granted access to the tag being configured. The ADMIN keyword can be used to grant access to all configured administrators. The EVERYBODY keyword can be used to grant access to all users. This is the default behavior when the tag is being actively monitored via sampling.

Example:

#
# This is a fragment of vovlmd/config.tcl
#
setTagAccess IN_MGC  "gupta sandeep mario"
setTagAccess IN_SNPS "gupta sandeep mario"
setTagAccess EU_MGC  "franz javier"
setTagAccess EU_CDN  "javier oliver"
setTagAccess IN_CDN  EVERYBODY
setTagAccess "CN_MGC CN_SNPS" "wchen"

If visibility of a tag needs to be restored to all users, the procedure must be called with the EVERYBODY keyword.