Qualys Flow User Roles and Permissions
Qualys Flow has 4 OOTB (Out-of-the-box) roles for users:
- Developer: Users can do all the operations except Deploy to the workflows created by them.
- Power Developer: Users can do all the operations to the workflows created by them.
- Deployer: Users attached to this role can deploy and execute the workflow they have access to via tags.
- Reader: Users can only see the workflows that they have access to via tags.
- CWE Admin: User attached with this role will have all the permissions in Qualys Flow.
The Qualys Flow module has several permissions related to specific permission categories. The following are the permissions categories for this module:
| Permission Categories | Description | Default Roles | ||||
|---|---|---|---|---|---|---|
| CWE Admin | Developer | Power Developer | Deployer | Reader | ||
| Qualys Flow Permissions | Qualys Flow UI Access |  |
|
|
|
|
| Qualys API Access | N | N | N | N | N | |
| Read Permissions | List All, Read All | |
N | N | N | N |
| List My | N | |
|
N | N | |
| Read My | N | |
|
N | N | |
| List and read WF by Tags | N | N | N | |
|
|
| QFlow Export Access | |
N | N | N | N | |
| Write Permissions | Delete, Edit, Execute, Deploy All | |
N | N | N | N |
| Assign WF Tags All and Remove WF tags All | |
N | N | N | N | |
| Deploy My | N | N | |
N | N | |
| Create | |
|
|
N | N | |
| Delete, Edit, Execute My | N | |
|
N | N | |
| Assign and Remove WF Tags My | N | |
|
N | N | |
| Execute, and Deploy WF By Tags | N | N | N | |
|
|
| Edit WF By Tags | N | N | N | N | N | |
| Delete WF By Tags | N | N | N | N | N | |
| QFlow Clone Access | N | N | N | N | N | |
| QFlow Import Access | N | N | N | N | N | |