User Roles
The following are the available roles:
-
Administrator — Has maximum privileges to do all operational as well as administrative tasks in the system, including creating new user accounts.
-
Read-Only — Can view data (asset inventory, events, network traffic), but cannot act in the system.
-
Security Analyst — Can view data in the system and resolve security events.
-
Security Manager — Can manage security-related capabilities, including configuring policies, viewing data in the system, and resolving events.
-
Site Operator — Can view data in the system and manage the asset inventory.
-
Supervisor — Has full privileges to do all operational tasks in the system and some limited administrative tasks excluding creating new users and other sensitive activities.
The following table gives a detailed breakdown of precisely which permissions are enabled for each role.
| Permission | Admin (Local) |
Admin (External/AD) |
Supervisor |
Security Manager |
Security Analyst |
Site Operator | Read only |
|---|---|---|---|---|---|---|---|
| Events | |||||||
| View events |
|
|
|
|
|
|
|
| Resolve |
|
|
|
|
|
|
|
| Download capture file |
|
|
|
|
|
|
|
| Exclude from policy |
|
|
|
|
|
|
|
| Resolve all |
|
|
|
|
|
|
|
| Export |
|
|
|
|
|
|
|
| Create Policy on FortiGate |
|
|
|
|
|
|
|
| Refresh |
|
|
|
|
|
|
|
| Policies | |||||||
| View policies |
|
|
|
|
|
|
|
| Enable/Disable |
|
|
|
|
|
|
|
| View action |
|
|
|
|
|
|
|
| Edit |
|
|
|
|
|
|
|
| Duplicate |
|
|
|
|
|
|
|
| Delete |
|
|
|
|
|
|
|
| Create policy |
|
|
|
|
|
|
|
| Export |
|
|
|
|
|
|
|
| Assets | |||||||
| View assets |
|
|
|
|
|
|
|
| View action |
|
|
|
|
|
|
|
| Edit |
|
|
|
|
|
|
|
| Delete |
|
|
|
|
|
|
|
| Import (upload new assets by csv) |
|
|
|
|
|
|
|
| Hide |
|
|
|
|
|
|
|
| Export |
|
|
|
|
|
|
|
| Resync |
|
|
|
|
|
|
|
| Nessus scan |
|
|
|
|
|
|
|
| Take snapshot (single asset) |
|
|
|
|
|
|
|
| Update open ports (single asset) |
|
|
|
|
|
|
|
| Update port state (single asset) |
|
|
|
|
|
|
|
| View in browser (single asset) |
|
|
|
|
|
|
|
| View in main asset map (single asset) |
|
|
|
|
|
|
|
| Generate attack vector (single asset) |
|
|
|
|
|
|
|
| Vulnerabilities (Plugins) | |||||||
| View plugin hits |
|
|
|
|
|
|
|
| View action |
|
|
|
|
|
|
|
| Edit comment |
|
|
|
|
|
|
|
| Update plugin set |
|
|
|
|
|
|
|
| Export |
|
|
|
|
|
|
|
| Network | |||||||
| Turn on packet capture |
|
|
|
|
|
|
|
| Close ongoing captures |
|
|
|
|
|
|
|
| Download PCAP file |
|
|
|
|
|
|
|
| Export conversations table |
|
|
|
|
|
|
|
| Set as baseline |
|
|
|
|
|
|
|
| Generate map |
|
|
|
|
|
|
|
| Refresh map |
|
|
|
|
|
|
|
| Groups | |||||||
| View groups |
|
|
|
|
|
|
|
| View action |
|
|
|
|
|
|
|
| Edit |
|
|
|
|
|
|
|
| Duplicate |
|
|
|
|
|
|
|
| Delete |
|
|
|
|
|
|
|
| Create group |
|
|
|
|
|
|
|
| Export |
|
|
|
|
|
|
|
| Report | |||||||
| View reports |
|
|
|
|
|
|
|
| Generate |
|
|
|
|
|
|
|
| Download |
|
|
|
|
|
|
|
| Export |
|
|
|
|
|
|
|
| Network Segments | |||||||
| View Network Segments |
|
|
|
|
|
|
|
| Edit |
|
|
|
|
|
|
|
| Delete |
|
|
|
|
|
|
|
| Create |
|
|
|
|
|
|
|
| Export |
|
|
|
|
|
|
|
| Learn More |
|
|
|
|
|
|
|
| Local Settings | |||||||
| Queries |
|
|
|
|
|
|
|
| System Configuration – Device Details |
|
|
|
|
|
|
|
| System Configuration – Sensors |
|
|
|
(No Actions) |
(No Actions) |
(No Actions) |
(No Actions) |
| System Configuration – Port Configuration |
|
|
|
|
|
|
|
| System Configuration – Updates |
|
|
|
|
|
|
|
| System Configuration – Certificate (HTTPS) |
|
|
|
|
|
|
|
| System Configuration – API Keys |
|
|
(Only Local Users) |
(Only Local Users) |
(Only Local Users) |
(Only Local Users) |
(Only Local Users) |
| System Configuration – License |
|
|
|
|
|
|
|
| Environment Configuration – Asset Settings |
|
|
|
|
|
|
|
| Environment Configuration – Hidden Assets |
|
|
|
- no restore |
- no restore |
|
- no restore |
| Environment Configuration – Custom Fields |
|
|
|
|
|
|
|
| Environment Configuration -Event Clusters |
|
|
|
|
|
|
|
| Environment Configuration – PCAP Player |
|
|
|
|
|
|
|
| Users and Roles – User Settings |
|
|
|
|
|
|
|
| Users and Roles – Local Users |
|
|
|
|
|
|
|
| Users and Roles – User Groups |
|
|
|
|
|
|
|
| Users and Roles – Active Directory |
|
|
|
|
|
|
|
| Integrations |
|
|
|
|
|
|
|
| Servers |
|
|
|
(No Actions) |
(No Actions) |
(No Actions) |
(No Actions) |
| System Actions |
|
without factory reset |
only backup and diagnostics |
only diagnostics |
|
|
|
| System log |
|
|
|
|
|
|
no syslog |
| Enable (on setup and after disable) |
|
|
|
|
|
|
|
| Delete Assets |
|
|
|
|
|
|
|