Starting with version 4.2.8, the Users section has been migrated to a new, streamlined interface. The section is now divided into three primary tabs:
- Directories: For configuring LDAP/Active Directory integrations.
- Management: For creating and managing local and domain users.
- Roles & Permissions: For defining RBAC rules.
Configuring User Roles
To configure a user role:
In the "Users Section", Select Roles & Permissions
Click Add Role:
3. Select permissions for this role
Permissions that relate to endpoints and/or management tools and services are subject to endpoint scope and/or management tool ownership as configured directly for the user or group.
Regarding some of the permissions, note the following:
- Manage server inventory: Includes viewing endpoints, adding discovery sources, and adding endpoints.
- Smart group administration: Since the role is for non-administrators, smart group actions will affect only the user who performed the action.
- Edit accounts and Assign accounts to servers refer to providing and assigning endpoint user accounts.
- Manage Automation Scripts - Enables the user to control and manage the scripts and tasks section. Checking this role, would automatically select all sub permissions. If the user should have only specific permissions related to Scripts and Tasks, select the relevant permission only.
- Note: if nothing is selected, then view-only access is granted.
4. Click Save.
Duplicating Roles (v4.2.8+)
To simplify the creation of similar permission sets, you can now duplicate existing roles. In the Roles & Permissions tab, locate the Duplicate icon in the Actions column next to the role you wish to clone. This will copy all assigned permissions into a new role profile, which you can then rename and adjust.
Patching User (no user management or settings)
View Only User (Read Only)
Comments
0 comments
Please sign in to leave a comment.