Custom Assessment and Remediation User Roles and Permissions
Custom Assessment and Remediation has 5 OOTB (Out-of-the-box) roles for users:
- CAR Manager: The manager role has all the default permissions of CAR, and can create and grant permissions to other users. They have all the privileges and access to all modules.
- CAR Author: The author role has limited developmental permissions, such as create, update, and download. This role also has all the view-only permissions.
- CAR Auditor: The auditor has the view-only and download permissions.
- CAR Viewer: The viewer role has the view-only permission.
- CAR Library Script Importer (Read-Only): The Library Script Importer has all the permissions except to create and update scripts and software packages.
User Roles Comparison
The Custom Assessment and Remediation module has several permission groups related to specific permission categories. The following are the permission categories for this module:
| Permission Categories | Description | Default Roles | |||||
|---|---|---|---|---|---|---|---|
| Manager | Operations | Author | Auditor | Viewer | Library Script Importer (Read only) | ||
| CAR Permissions | Car UI Access |  |
|
|
|
|
|
| Script Permissions | View Script List Page | |
|
|
|
|
|
| Create Script | |
N | |
N | N | N | |
| Update script | |
N | |
N | N | N | |
| Review script | |
N | N | N | N | |
|
| Evaluate script | |
N | |
N | N | |
|
| Execute script | |
|
N | N | N | |
|
| Approve, and deprecate script | |
N | N | N | N | |
|
| Import and export script | |
|
|
N | N | |
|
| Download script | |
|
|
|
N | |
|
| Job Permissions | View Job List Page | |
|
|
|
|
|
| Jobs: Download and delete jobs. | |
N | N | |
N | |
|
| Schedule Permissions | View Schedule List Page | |
|
|
|
|
|
| Create, update, and delete the schedule | |
|
|
N | N | |
|
| Activate and deactivate the schedule | |
|
N | N | N | |
|
| Download the schedule | |
|
|
|
N | |
|
| Library Permissions (Script Liabrary) | View the script library | |
|
|
|
|
|
| Import the script library | |
N | |
N | N | |
|
| Configuration Permissions | View the configuration page | N | N | N | N | N | |
| Modify the configuration page | N | N | N | N | N | N | |
| Audit Log Permissions | View Audit Logs List Page | |
|
|
|
|
|
| Download Audit Logs | |
N | N | |
N | |
|
| Reports Permissions | View | |
|
|
|
|
|
| Download | |
|
|
|
N | |
|
| Create | |
N | |
N | N | |
|
| Delete | |
N | N | N | N | |
|
| Software Package | View | |
|
|
|
|
|
| Execute | |
|
N | N | N | |
|
| Create | |
N | N | N | N | N | |
| Update | |
N | N | N | N | N | |
| Evaluate | |
N | N | N | N | |
|
| Deprecate, Approve, and Review | |
N | N | N | N | |
|
| Software Package Jobs | View | |
|
|
|
|
|
| Download | |
N | N | |
N | |
|