Use the Execute Inaccessible Server Auths permission to allow a
user to execute a step on a server with a server authentication to
which a user does not have access.
As a prerequisite, the user must already have or be granted access
to the server. (To grant access to servers, click .)
You use server authentications to log in and access servers. Server
authentications are associated with an access group ().
You might create the following server authentications for a server:
- A dev/dev server authentication. Associate this server authentication
with the developer access group for the server.
- A qa/qa server authentication. Associate this server authentication
with the QA access group.
- A prod/prod server authentication. Associate this server authentication
with the Build access group.
To permit a user who has access only to the qa/qa server authentication
to run a step as the prod/prod server authentication, add the Execute
Inaccessible Server Auths permission to the QA access group.
Note: If the user has access to the server but does not have access
to server authentication through the Execute Inaccessible Server Auths
permission, the step will still run but only if the environment variable
_USE_BFCREDS is set to override server authentication.