Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

The Administration -> User Access -> Roles page displays the list of predefined roles that are currently in your systems. For more information about role-based access control, see Managing Role Based Access Control.

A user role defines the set of permissions or responsibilities that the users have the ability to perform. Depending on your subscription and license entitlements, the Cloud Services Portal provides the following default user roles that you can quickly apply to their respective user groups when creating access policies. You can also create custom roles to which you add granular permissions based on your business needs. For information about how to create custom roles, see Configuring Custom Roles.

Each of the following predefined user roles supports various permissions. When you click a role, you can view the list of supported permissions in the right panel.

  • Access Control Administrator Role: This role has access to view and configure licenses, users, user groups, and access policies.
  • Administrator Role: This is a global role that has access and the capability to administer all aspects of the system.
  • User Role: This is a global role that has read-only access to all service-related configurations and reports on the system.
  • TD Administrator Role: This role has access and the capability to administer all aspects related to BloxOne Threat Defense.
  • TD User Role: This role has read-only access to configurations and reports related to BloxOne Threat Defense.
  • DDI Administrator Role: This role has access and the capability to administer all aspects related to BloxOne DDI.
  • DDI User Role: This role has read-only access to configurations and reports related to BloxOne DDI.
  • DDI DNS Manager Role: Read/Write all DNS resource types. 
  • DDI DNS Operator Role: Read/Write on any zone type, record type, and child zone type. Read-only on all other resource types. 
  • DDI DNS User Role: Read/Write on record types. Read-Only on all other resource types. 
  • DDI DNS Auditor: Read-Only on all DNS resource types. 
  • DDI DHCP Manager Role: Read/Write on all DHCP resource types.
  • DDI DHCP User Role: Read/Write on fixed address and lease types. Read-Only on all other DHCP/IPAM resource types.
  • DDI DHCP Auditor Role: Read-Only on all DHCP/IPAM resource types.
  • DDI IPAM Manager Role: Read/Write on all IPAM resource types.
  • DDI IPAM Operator Role: Read-Only on IP Space and Address Block. Read/Write on all other IPAM/DHCP resource types.
  • DDI IPAM User Role: Read-Only on IP Space, Address Block, and Subnet. Read/Write on all other IPAM/DHCP resource types.
  • DDI IPAM Auditor Role: Read-Only on all IPAM/DHCP resource types.

You can also do the following in this tab:

  • Click to select the columns you want to display or use the arrow keys to reorder the columns.

  • For a custom role, click  -> Edit to modify information. 

  • For a custom role, click -> Remove to delete the role. You can also select the respective role and click the Remove button to do so. Note that you cannot remove a predefined role.

  • Select a role to view additional details in the right panel. You can collapse the right panel by clicking.

  • Enter the value that you want to search in the Search text box. The Cloud Services Portal displays the list of records that match the keyword in the text box.

  • Click  and then to filter data by the available values.

You can also perform the following action in this tab:


  • No labels