Roles
A role is an access profile that defines what a user can do in the system. Each role has a set of permissions per section (read, edit, delete).
Purpose
Limit access per user, separate responsibilities (for example, cases only, configuration only), and align system usage with security policies.
Configuration
| Field | Description |
|---|---|
| Name | Role name (required) |
| Description | Descriptive text for the role (required) |
| Type | Role type that defines the default set of permissions (required) |
| Identifier | Unique role identifier (for LDAP/SAML mapping) |
Role types
| Type | Description |
|---|---|
| Security | Full access to security and audit configuration |
| Supervisor | Management of jobs, scripts, and operational configuration |
| Author | Creation and editing of scripts and rules |
| Analyst | Management of cases and findings |
| Owner | Read access and management of own resources |
| Guest | Limited read-only access |
Relationship with other modules
- Assigned to Users (each user has one role per account)
- Controls access to Cases, Requests, Scripts, Jobs, Rules, and all Configuration sections
- Access logs can only be viewed by users with permission on that section