Question

removing useless operator Id from Operator list

Hi,

Security team is asking us to remove useless users from our operator list.

What are the mandatory operators to keep Pega working fine ?

Where can I find documentation explaining the role of those operators ?

Here is the list after Pega installation. Version 7.3.1

Administrator@pega.com
PortalUser@pega.com
DatabaseAdmin@pega.com
PRPC_SOAPOper
aesremoteuser
IntSampleUser
ExternalInviteUser
External
UVUser@pega.com
Batch@pega.com

***Moderator Edit-Vidyaranjan: Updated Platform Capability***

Correct Answer
September 26, 2019 - 7:28pm

Hi @DANSAUVE ,

Thank you for posting your query here.

You can disable the default operators shipped with Pega.

The below link will give details about the role of the operator and whether it is safe to delete them or not.

https://community.pega.com/sites/default/files/help_v731/zstandarddata/data-admin-operator-id.htm

You can refer the link below to know more about disabling the operator records.

https://community.pega.com/knowledgebase/articles/disabling-default-operators-insecure-passwords#enable-detailed-logging-designer-studio

Hope this helps.

Regards,

Priyabharathi

Comments

Keep up to date on this post and subscribe to comments

Pega
September 26, 2019 - 7:26pm

These are all ootb operator ids. For each operator id, you can open the rule and check its description and usage under History tab of the rule. 

To check the roles of these operators, you can open their access groups and view each Available role associated with.  

September 26, 2019 - 7:28pm

Hi @DANSAUVE ,

Thank you for posting your query here.

You can disable the default operators shipped with Pega.

The below link will give details about the role of the operator and whether it is safe to delete them or not.

https://community.pega.com/sites/default/files/help_v731/zstandarddata/data-admin-operator-id.htm

You can refer the link below to know more about disabling the operator records.

https://community.pega.com/knowledgebase/articles/disabling-default-operators-insecure-passwords#enable-detailed-logging-designer-studio

Hope this helps.

Regards,

Priyabharathi

September 28, 2019 - 8:43am

Hi,

You can refer below link which is similar to your requirement.It is worth to go through.

https://community1.pega.com/community/pega-support/question/deleting-predefined-operator-id

 

Pega
September 29, 2019 - 3:14am

Hi,

There is a table named pr_operator which contains details of all the operators created. You can take back up of this table & then try to update it by deleting unused operator.Please update us the result after that.

Note:Please take backup of this table before performing any activity.

Thanks,

Abhinav

September 29, 2019 - 4:24am

Is there any reason due to which the Security Team has asked to delete the OOTB operators. 

Each of them has been included for a reason, I would not suggest you delete any of them.

October 9, 2019 - 4:21pm
Response to Rachit_Agarwal

Hi, I'm sorry but I do not know what OOTB means.

It is part of the best security practice to remove any useless users from an application to reduce exposure to risk / hacking.

There are a few of operator that are called with a description like "sample or Test" this means there is no reason for the operator Id to exist in a production environment.

That is why we want to remove the useless users.

Thank you and have a nice day.

October 9, 2019 - 5:01pm

Hi DANSAUVE,

OOTB means Out of the box, e.g. standard operators that are shipped out of the box with Pega.

As Priyabharathi pointed out, the following article discusses how to disable default operators with insecure passwords:

https://community.pega.com/knowledgebase/articles/disabling-default-operators-insecure-passwords