Overview

Users> Roles & Permissions (RBAC) - configuration and setup guide for JetPatch administrators.

Starting with version 4.2.8, the Users section has been migrated to a new, streamlined interface. 

The section is now divided into three primary tabs:

• Directories: For configuring LDAP/Active Directory integrations.
• Management: For creating and managing local and domain users.
• Roles & Permissions: For defining RBAC rules.

Configuring User Roles

To configure a user role:

• In the "Users Section", Select Roles & Permissions

• Click Add Role:

• Select permissions for this role

  • Permissions that relate to endpoints and/or management tools and services are subject to endpoint scope and/or management tool ownership as configured directly for the user or group.

• Regarding some of the permissions, note the following:

  • Manage server inventory: 
    • Includes viewing endpoints, adding discovery sources, and adding endpoints.
  • Smart group administration: 
    • Since the role is for non-administrators, smart group actions will affect only the user who acted.
  • Edit accounts and assign accounts to servers
    • Refer to providing and assigning endpoint user accounts.
  • Manage Automation Scripts
    • Enables the user to control and manage the scripts and tasks section. Checking this role would automatically select all sub permissions. 
    • If the user should have only specific permissions related to Scripts and Tasks, select the relevant permission only.
    • Note: if nothing is selected, then view-only access is granted.
• Click Save.

Duplicating Roles (v4.2.8+) 

To simplify the creation of similar permission sets, you can now duplicate existing roles. 

In the Roles & Permissions tab, locate the Duplicate icon in the Actions column next to the role you wish to clone. This will copy all assigned permissions into a new role profile, which you can then rename and adjust.

Patching User (no user management or settings)

View Only User (Read Only)