# Configuration Management Security Role: Cost Centers Tab

{% hint style="info" %}

### Before you start

You must have **Security Roles setup** selected in the Admin tab of your own **General Access security role** before you can assign or remove permissions for any security roles.
{% endhint %}

1. Display the Configuration Management Security Roles details window, if it is not already on screen.
2. Assign the global permissions for the security role:

<table data-header-hidden><thead><tr><th width="238"></th><th></th></tr></thead><tbody><tr><td>Disable CMDB Security</td><td>Analysts with this role have unlimited access to the CMDB, including the <strong>External Resource Search</strong>and <strong>Federated CMDB Admin</strong> options. Select this option to effectively turning off the granular security system for access to the CMDB. All CMDB items will open in edit mode, regardless of other permissions. Leave this deselected to assign specific permissions to the role.</td></tr><tr><td>External Resource Search</td><td>Analysts with this role can search for CMDB items from the External Resources Search window. Analysts with this permission are restricted to a <strong>Cached Resource Search</strong> so searches can only return CMDB details that have been imported and not excluded from the Federated CMDB. This option also allows Analysts to view external resource data via the Linked Resources option.</td></tr><tr><td>Federated CMDB Admin</td><td><p>Analysts with this role can import CMDB Items from the External Resource Search window. They can also perform a <strong>Full Resource Search</strong>to search for Item Details within the CMDB which have not been imported into ASM Core, access the <strong>Federated CMDB Administration</strong> windows and access and process Discrepancy Reports through the CMDB Item Details Explorer option of the same name. </p><p>This option is only enabled if <strong>External Resource Search</strong> is selected.</p></td></tr></tbody></table>

1. Select the **Cost Centers** tab and make the necessary changes to the permissions.&#x20;

<details>

<summary>Cost Center View Options</summary>

Analysts with this role can view and search for cost centers.  When View is selected, additional options are available:

1. **Cost Center New -** Analysts with this role can create cost centers.
2. **Cost Center Update -**  *See Cost Center Update, below*
3. **Cost Center Delete -** Analysts with this role can delete cost centers.
4. **Cost Center Stakeholder View -** Analysts with this role can view and search for stakeholders linked to Cost Centers.
5. **\*Cost Center Advanced Search** *(Cost Center Advanced Search is always available even if View is not selected) -* Analysts with this role can use advanced search and boolean operations to locate cost centers.

</details>

<details>

<summary>Cost Center Update Options</summary>

Analysts with this role can update cost centers.  When **Cost Center Update** is granted, the following options are available:

**Cost Center Stakeholders Write** - Analysts with this role can update the stakeholders linked to Cost Centers. **Cost Center Stakeholder View** must also be selected.

</details>

2. Select  ![](https://alemba.help/help/10.0/content/resources/images/save%20and%20close%20button.png) to save the changes and close the window. Provide the Change Reasons if prompted to do so. Alternatively, select another tab, if appropriate.