Isolation User Roles and Permissions
Isolation application has five out-of-the-box (OOTB) roles for ISL users:
- ISL Manager: This role has all the Isolation application permissions.
- ISL User: This role is created for the operators of the isolation job, who interact and manage isolation activities.
- Isolation Dashboard Author: This is a special role needed only for larger organizations that delegate development of dashboards to a dedicated team especially, one that does NOT operate/ manage the isolation jobs. This role includes all the Isolation Reader permissions.
- Isolation Reader: This role is granted to users with viewing/read-only capabilities, developed to provide insight into the Isolation operations. It has only view permissions on isolation jobs and dashboards.
- Isolation Config Manager: This role is granted to users to access the Configuration > Asset Isolation Exceptions tab. This role has permissions to add or remove IPs, applications, or domains from the exceptions list for isolation.
- Custom Access Manager: This role grants access to the License tab and permits the user to add a co-author to the deployment job.
User Roles Comparison
The ISL application has several permissions that are assigned to the user roles. The following table compares these permissions granted to the default user roles for ISL:
| Default Permissions | Description | Default Roles | |||||
|---|---|---|---|---|---|---|---|
| ISL Manager | ISL User | Isolation Dashboard Author |
Isolation Reader | Isolation Config Manager |
Custom Access Manager |
||
| ISL Permissions | ISL API Access |  |
N | N | N | N | N |
| ISL UI Access | |
N | N | N | N | N | |
| ISL Deployment Job Permissions | Create Isolation Job | |
N | N | N | N | N |
| View, Edit and Delete Any Isolation Job | |
N | N | N | N | N | |
| Enable/Disable Any Isolation Job | |
N | N | N | N | N | |
| View and Edit Assigned Isolation Job | |
|
N | N | N | N | |
| Enable/Disable Assigned Isolation Job | |
|
N | N | N | N | |
| Read Config for Quarantine Job | |
|
N | |
|
N | |
| Create, Edit, and Delete Config for Quarantine Job | |
N | N | N | |
N | |
| Manage Dashboards: Allows sub users to create, edit, delete, dashboards and widgets for isolation. | |
|
|
N | N | N | |
| View Dashboards and other screens based on tag scopes | |
|
|
|
N | N | |
| View Assigned Jobs: Allows sub users to view their assigned jobs. | |
|
|
|
N | N | |
| Global Custom Feature Access Permissions | Allow License Tab Access | N | N | N | N | N | |
| Allow access to add Deployment Job Co-author | N | N | N | N | N | |
|