The Auditor administrator has read-only access to all features, giving him the ability to review all access request activity:
Navigation | Permissions |
---|---|
Dashboard |
View only. |
Activity Center |
View and export activity events. Audit access request workflow. |
Reports |
View and export entitlement reports. |
Administrative Tools | Toolbox |
Access to all Administrative Tools views and the Tasks pane. |
Administrative Tools | Accounts |
View only. |
Administrative Tools | Account Groups |
View only. |
Administrative Tools | Assets |
View Asset Discovery jobs. |
Administrative Tools | Asset Groups | View only. |
Administrative Tools | Entitlements |
View only. |
Administrative Tools | Partitions |
View only. |
Administrative Tools | Settings: |
|
|
View only. |
|
View Appliance Information. Run diagnostics on appliance. View licensing information. View Lights Out Management (BMC) settings. View Networking settings. View Time settings. View update history. |
|
View only. |
|
View only. |
|
View only. |
|
View only. |
|
View only. |
|
Login notification: View only. Set message of the day. |
|
View only. |
|
View only. |
|
View only. |
Administrative Tools | Users |
View only. |
Administrative Tools | User Groups |
View only. |
The Authorizer Administrator is the "permissions" administrator and performs the following:
|
NOTE: Also has User Administrator and Help Desk Administrator permissions. |
|
Important: Authorizer Administrators can change the permissions for their own account which may affect their ability to grant permissions to other users. When you make changes to your own permissions, they take effect next time you log in. |
Navigation | Permissions |
---|---|
Activity Center |
View and export user activity events, including authentication events. |
Administrative Tools | Toolbox |
Access to the Users and User Groups view. Access to Tasks pane. |
Administrative Tools | Settings |
|
|
View only of directories used for identity and authentication. External Federation and Radius providers can be configured for authentication use. |
|
Login notification: View only. Set message of the day. |
|
View only. |
|
Configure user password rules. |
|
Set default time zone. |
Administrative Tools | Users |
Add, modify, delete, and import users. Set administrator permissions. Set passwords and unlock administrator accounts. Delete administrator users. Enable or disable administrator users. |
Administration Tools | User Groups |
Add or delete directory groups, if a directory has been added to Safeguard for Privileged Passwords. |
A Help Desk Administrator:
Unlocks accounts for all user accounts.
|
NOTE: Help Desk Administrators can only view the user object history for their own account. |
Navigation | Permissions |
---|---|
Activity Center | View and export user activity events. |
Administrative Tools | Toolbox |
Access to the Users view and the Tasks pane. |
Administrative Tools | Settings: | |
|
Login notification: View only. Set message of the day. |
|
View only. |
|
CView only. |
|
View only. |
Administrative Tools | Users |
Set passwords and unlock accounts for non-administrator users. |
The Operations Administrator monitors the status of the appliance and can reboot the appliance.
|
NOTE: This user can be a non-interactive user; that is, an automated script or external monitoring system. |
Navigation | Permissions |
---|---|
Activity Center |
View and export appliance activity events. |
Administrative Tools | Toolbox | Access to the Tasks pane. |
Administrative Tools | Settings: |
|
|
View only. |
|
Shutdown or restart the appliance. Run diagnostics on the appliance. Generate a support bundle to assist technical support. View licensing information. View Networking settings. View Time settings. View update history. |
|
Configure backup and retention settings, define archive servers, and manage backups. |
|
View only. |
|
View only - monitor the status of the clustered environment. |
|
View only. |
|
Login notification: View only. Set message of the day. |
|
View only. |
|
View only. |
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy