Security Roles
Security roles are used to grant access to data (groups, queries, reports, etc.) and to grant access to applications (Group Builder, Query-Report Builder, Policy Builder, CAS, Security Assessments, etc).
By default, when a component is initially defined, only the owner (the person who defined it) and the admin user (who has special privileges) are allowed to access and modify that component.
You can allow other users to access the components you define by assigning security roles. For example, if you assign a security role named DBA to an audit process, all users assigned the DBA role will be able to access that audit process.
Assign Security Roles
- Open or select the item to which you want to assign one or more security roles (a policy or report definition, for example).
- Click Roles.
- Check all of the roles you want to assign from the Assign Security Roles list. You can only assign roles that are assigned to your account.
- Click Apply.
Define a new Security Role
By default, only the special accessmgr user is allowed to create or remove security roles.
- Login as accessmgr and open the User Role Browser by clicking .
- At the end of the role browser, click Add Role.
- In the Role Form panel, enter a new Role Name and click Add Role.
Remove a Security Role
By default, only the special accessmgr user is allowed to create or remove security roles. To remove a role assigned to a component, see Assign security roles to a component.
- Login as accessmgr and open the User Role Browser by clicking .
- Click Delete for any role, and then click Confirm Deletion.