Welcome
Deploying and Administrating
All the information you need to deploy and administrate HCL Universal Orchestrator.
Managing Workload Security
You can manage security settings in your environment from the Orchestration CLI and from the UI.
Actions on security items

What's new
The What's new section tracks the capabilities delivered across each HCL Universal Orchestrator release, organized by version, so you can navigate directly to the features relevant to your deployment.
Getting started with HCL Universal Orchestrator
HCL Universal Orchestrator is a cloud-native workload orchestration and scheduling platform built on Kubernetes. Its microservices-based architecture enables the centralized orchestration of multi-cloud and hybrid environments from a single point of control.
Deploying and Administrating
All the information you need to deploy and administrate HCL Universal Orchestrator.
- Deploying HCL Universal Orchestrator
  Deploying HCL Universal Orchestrator requires the deployment of all its microservices, the UI, the cloud agent, and optionally, the Orchestration CLI.
- Installing and connecting HCL Workload Automation dynamic agent at version 10.2.3
  You can install agents at HCL Workload Automation to be able to manage all task integrations.
- File integrity and safety with SHA checksum
  Validate the authenticity and integrity of files downloaded from the Download Center ¹ in the UI by verifying their SHA checksums. SHA checksum validation ensures file integrity by comparing the hash value generated for a file, against a unique, pre-generated checksum. Each file in the Download Center is accompanied by its own unique SHA checksum.
- Installing HCL UnO agent
  HCL UnO agent is a versatile on-premises agent that can run all types of tasks with efficiency and reliability. You can configure the properties of the agent to connect it to the agent manager of HCL Universal Orchestrator.
- Installing and authenticating the Orchestration CLI
  Install, authenticate and configure the Orchestration CLI.
- Managing HCL UnO agent in Windows operating systems
  You can manage the agent by using scripts that are generated while configuring the agent or by daemon script. It is recommended to use any method for ideal cohesion and efficient administration.
- Managing HCL UnO agent in Unix operating systems
  You can manage the agent by using scripts that are generated while configuring the agent or by daemon script. It is recommended to use any method for ideal cohesion and efficient administration.
- Managing the AI agent
- Managing Workload Security
  You can manage security settings in your environment from the Orchestration CLI and from the UI.
  - Managing access control lists from the Orchestration CLI
  - Managing security roles from the Orchestration CLI
    In this topic you can find the syntax to create a security role.
  - Managing security access
  - Actions on security items
  - Managing authentication using API Keys
    Learn what API Keys are and how they can secure authentication quickly and easily.
- Configuring a user registry
  In this topic you can find information about how to configure a user registry.
- Keeping track of changes in your environment
  Administrators can request to specify a justification when saving or editing items to keep track of the changes in your environment.
- Managing multitenant security
- Policy-driven plan
  The new HCL Universal Orchestrator policy-driven adaptive plan makes your workload more autonomous, dynamic and scalable.
- Managing time zones
  In this topic you can find information about managing time zones.
- Observability
  Using third-party tools to monitor HCL Universal Orchestrator
Using the UI
The UI is the HCL Universal Orchestrator interface, from which you can design your scheduling environment and monitor every process.
Orchestrating
Orchestrate anything with HCL Universal Orchestrator.
Orchestrating from Mobile
You can use your mobile devices to manage quickly and easily your whole HCL Universal Orchestrator environment.
Monitoring
Take your environment under control.
Using REST API
Use REST APIs to easily integrate workload scheduling capabilities with external products and solutions.
Administering multitenancy for service providers
Configure and administer a HCL Universal Orchestrator multitenant environment.
Uno AI Pilot
Welcome to the HCL Universal Orchestrator AI Pilot documentation. This resource is designed to guide you through everything you need to know about using UnO AI Pilot effectively. You will find detailed instructions, feature overviews, and helpful tips to ensure you get the best experience with UnO AI Pilot.
UnO Agentic AI Builder
Troubleshooting
Recover your environment if any issue occurs.
Notices

Actions on security items

The following matrix shows the actions that users or groups with standard roles can perform on the different scheduling and security item types. The names in parentheses represent the corresponding item values that you must use when defining role-based security via the Orchestration CLI.

Table 1. Standard security role actions by item type
Security item type	ADD	MODIFY	DELETE	DISPLAY	LIST	USE	UNLOCK	Item-specific actions
Workstation (`cpu`)	✓	✓	✓	✓	✓	✓	✓	LINK, UNLINK
Workflow (`schedule`)	✓	✓	✓	✓	✓	✓	✓	SUBMIT, CANCEL, ADDDEP, DELDEP, RELEASE, ALTPRI
Task (`job`)	✓	✓	✓	✓	✓	✓	✓	SUBMIT, SUBMITDB, CANCEL, ADDDEP, DELDEP, RELEASE, KILL, RERUN, CONFIRM, ALTPRI
Folder (`folder`)	✓	✓	✓	✓	✓	✓	✓	ACL
Endpoint (`endpoint`)	✓	✓	✓	✓	✓	✓	✓	LINK, UNLINK
Event source (`eventsource`)	✓	✓	✓	✓	✓	✓	✓	LINK, UNLINK
AI Agent (`aiagent`)	✓	✓	✓	✓	✓	✓	✓	TEST, DEPLOY, UNDEPLOY
Resource (`resource`)	✓	✓	✓	✓	✓	✓	✓	None
Credentials (`credentials`)	✓	✓	✓	✓	✓	✓	✓	None
Calendar (`calendar`)	✓	✓	✓	✓	✓	✓	✓	None
Variable table (`vartable`)	✓	✓	✓	✓	✓	✓	✓	None

Note: For variable tables, granting USE access implicitly includes DISPLAY access: a user with USE permission can both reference the variable table in workflow and task definitions and view its variable values. A separate DISPLAY grant is not required. DISPLAY alone enables viewing values but does not authorize referencing the table in definitions.

The following table shows the specific actions that users or groups with administrative roles can perform. See the names in parentheses for the corresponding action and item values to use in the Orchestration CLI.

Table 2. Administrative tasks that users or groups can perform
Administrative Category	Administrative actions
API keys administrator	Delete all API keys (`securityrole ADMIN - DELETEALLAPIKEYS`) List all API keys (`securityrole ADMIN - LISTALLAPIKEYS`) Create personal API Key (`securityrole ADMIN - CREATEPERSONALAPIKEY`) Create service API Key (`securityrole ADMIN - CREATESERVICEAPIKEY`)
Agent management	Register agent (`securityrole ADMIN - REGISTERAGENT`)
Plug-in management	Install plug-in (`securityrole ADMIN - INSTALLPLUGIN`) Delete plug-in (`securityrole ADMIN - DELETEPLUGIN`) List plug-ins (`securityrole ADMIN - LISTPLUGIN`)
UnO AI Pilot management	Manage AI Pilot (`securityrole ADMIN - MANAGEAIPILOT`)