IBM BPM, V8.0.1, All platforms > Troubleshooting and support > Tools for troubleshooting your applications > Work with failed events
Security considerations for recovery
If you have enabled security for your IBM BPM applications and environment, it is important to understand how role-based access and user identity affect the Recovery subsystem.
- Role-based access for the failed event manager
- The failed event manager uses role-based access control for the failed event data and tasks. Only the administrator and operator roles are authorized to perform tasks within the failed event manager. Users logged in as either administrator or operator can view all data associated with failed events and can perform all tasks.
- Event identity and user permissions
- A failed event encapsulates information about the user who originated the request. If a failed event is resubmitted, its identity information is updated to reflect the user who resubmitted the event. Because different users logged in as administrator or operator can resubmit events, these users must be given permissions to the downstream components required to process the event.
For more information about implementing security, see Securing applications and their environment.