Role Based Access Control (RBAC)
Last updated
Last updated
Role Based access control (RBAC) streamlines permissions to various resources within the Nightfall console. There are two key components of RBAC within Nightfall - roles and permissions.
A role is a collection of pre-defined permissions that can be assigned to user accounts within Nightfall. Default roles cannot be edited. A role can be assigned to more than one user account whereas an user account can only have one role. Permissions refer to the specific create, read, update, and delete actions you can take on resources such as policies, events, apps, etc within Nightfall.
To access the Users and Roles page:
Click Settings from the left menu.
Click the Users & roles tab.
You can view the list of Users and the roles assigned to each user.
Click the Roles tab to access the Roles page.
The Roles page displays the Role name, Permissions assigned to a role and the number of users to whom the role is assigned, as shown in the following image.
You can click the View permission details button to expand the complete list of permissions associated with a Role.
Currently, you can only a maximum of one role to a user. Also, you cannot create custom Roles and must use the out of the box Roles provided by Nightfall.
Nightfall provides you with five Roles. Each of the five Roles is associated with multiple permissions. The following table lists each role and the permissions associated with the Role.
Role | Permissions |
---|---|
Security Analyst | |
Policy Manager | |
Security Events Manager | |
Security Operations Manager | |
System Administrator |
You can learn more about each of the role from the following links.