Roles

Roles allow you to manage privileges for major functions in Tenable Web App Scanning and control which Tenable Web App Scanning resources users can access in Tenable Web App Scanning.

When you create a user, you must select a role for that user that broadly determine the actions the user can perform.

Note: You can further refine user access to specific resources by assigning permissions to individual users or groups. For more information, see Permissions.

Roles vs. Permissions: What's the difference?
  • Roles — Roles allow you to manage privileges for major functions in Tenable Web App Scanning and control which Tenable Web App Scanning modules and functions users can access.
  • Permissions — Permissions allow you to manage access to your own data, such as Tags, Assets, and their Findings.

On the Roles page, you can view all Tenable-provided roles and any custom roles created on your Tenable Web App Scanning instance.

You can assign one of the following role types to users:

Role Type Description
Tenable-Provided Roles and Privileges Contains a predefined set of privileges determined by the Tenable Web App Scanning product specified on your account license. Each role encompasses the privileges of lower roles and adds new privileges. Administrators have the most privileges. Basic users have the fewest.
Custom Roles Contains a custom set of privileges that allow you to tailor user privileges and access to resources on your Tenable Web App Scanning instance.

To view your user roles:

  1. In the upper-left corner, click the Menu button.

    The left navigation plane appears.

  2. In the left navigation plane, click Settings.

    The Settings page appears.

  3. In the left navigation, click Settings.

    The Settings page appears.

  4. Click the Access Control tile.

    The Access Control page appears. On this page, you can control user and group access to resources in your Tenable Web App Scanning account.

  5. Click the Roles tab.

    The Roles page appears. This page contains a table that lists all the user roles available on your Tenable Web App Scanning instance.

On the Roles page, you can complete the following actions: