Creating Role

Note

A user can only create or assign roles that include permissions they themselves possess. To define a role with specific permissions, the user must have the appropriate rights to manage those permissions.

  1. Click + icon in the main menu next to the Roles tab, or select Management > Roles and then click Add Role.

  2. Enter a unique name for the new object.

  3. If needed, select the Description option to add a summary of the role.


GLOBAL PRIVILEGES TAB


  1. Go to the GLOBAL PRIVILEGES tab and select all privileges you want to assign to the created role.

Note

By selecting all privileges, you will grant this role all existing privileges, similar to the superadmin role in previous versions.

  1. Go to the Permissions Navigation panel and click Servers to quickly navigate to the Servers privileges section.

  1. In the Servers section, select the Read option (this will enable viewing all server configurations).

../../_images/5-6-role-priv.png

Note

You can use hints added at the end of each privileges section to assign additional privileges related to this object type, ensuring the full operability of the role.

../../_images/5-6-role-related.png

  1. Click Save to create the role and proceed with further configuration.

  2. To add specific additional rights to individual objects, use the Go to… button or navigate to the OBJECT RIGHTS tab.


OBJECT RIGHTS TAB


Note

In the OBJECT RIGHTS tab, you can assign capabilities to individual objects of the following types: accounts, groups, pools, safes, servers, and users.

  1. Select the appropriate tab to assign permissions to the specified object (e.g., SERVERS).

  1. Click Assign server.

  1. In the Server capability dialog box, select one server from the list to which you want to grant capabilities.

  1. Click Save.

  1. Next, select the actions that can be performed on the selected server (e.g. Modify).

../../_images/5-6-role-object.png

  1. After completing the above steps, you will create a role with privileges to view all server configurations and modify only the servers selected in the OBJECT RIGHTS tab.

Warning

Please note the existence of the USERS sub-tab within the CAPABILITIES tab. This sub-tab is responsible for assigning capabilities to selected users (as objects), not for assigning roles to them.


USERS TAB


Note

In the USERS tab, you can assign the created role to users, granting them all the selected privileges.

  1. Navigate to the USERS tab.

  1. Click Assign user.

  1. Select the users to whom you want to assign the created role.

../../_images/5-6-role-user.png

  1. Click Save.


Related topics: