Role-Based Access Control
You must have the user roles defined to get started with Qualys CAR. Not all users have access to execute all the operations; hence, user segregation is a better way to streamline the process of script execution in your environment.
With Role-based Access Control, you can ensure that the CAR users have access only to the tasks for which they have permission. These roles give an additional level of security for accomplishing required tasks and prevent them from accessing anything beyond their assigned roles.
| Roles | Permissions |
|---|---|
|
CAR Manager |
General UI: Access Script: View, Create, Review, Evaluate, Approve, Update, Deprecate, Execute, Import, Export, Download Schedule: View, Create, Update, Activate, Deactivate, Download, Delete Jobs: View, Delete, Download Audit Logs: View, Download Dashboard: View, Update, Create, Download, Print, Delete Library: View, Import Reports: View, Download, Create (Generate), Delete |
|
Library Script Importer (Read-Only) |
General UI: Access Script: View, Review, Evaluate, Deprecate, Execute, Schedule: View, Create, Update, Activate, Deactivate, Download, Delete Jobs: View, Download Audit Logs: View, Download Dashboard: View, Update, Create, Download, Print, Delete Library: View, Import Configuration: View Reports: View, Download, Create (Generate), Delete |
|
CAR Author |
General UI: Access Script: View, Create, Evaluate, Update, Import, Export, Download Schedule: View, Create, Update, Download, Delete Jobs: View Audit Logs: View Dashboard: View Library: View, Import Reports: View, Download, Create |
|
CAR Auditor |
General UI: Access Script: View, Download Schedule: View, Download Jobs: View, Download Audit Logs: View, Download Dashboard: View, Download, Print Library: View Reports: View, Download |
|
CAR Viewer |
General UI: Access Script: View Schedule: View Jobs: View Audit Logs: View Dashboard: View Library: View Reports: View |
|
CAR Operations |
General UI: Access Script: View, Execute, Import, Export, Download Schedule: View, Create, Activate, Deactivate, Update, Delete, Download Jobs: View Audit Logs: View Dashboard: View Library: View Reports: View, Download |
Only the Manager and Author can create custom Scripts by importing from a Library Scripts.