Role-Based Access Control

You must have the user roles defined to get started with Qualys CAR. Not all users have access to execute all the operations; hence, user segregation is a better way to streamline the process of script execution in your environment.

With Role-based Access Control, you can ensure that the CAR users have access only to the tasks that they have permission for. These roles give an additional level of security to accomplish required tasks and prevent them from accessing anything that's beyond their assigned roles.

Roles Permissions

CAR Manager

General UI: Access

Script: View, Create, Review, Evaluate, Approve, Update, Deprecate, Execute, Import, Export, Download

Schedule: View, Create, Update, Activate, Deactivate, Download, Delete

Jobs: View, Delete, Download

Audit Logs: View, Download

Dashboard: View, Update, Create, Download, Print, Delete

Library: View, Import

CAR Author

General UI: Access

Script: View, Create, Evaluate, Update, Import, Export, Download

Schedule: View, Create, Update, Download, Delete

Jobs: View

Audit Logs: View

Dashboard: View

Library:  View, Import

CAR Auditor

General UI: Access

Script: View, Download

Schedule: View, Download

Jobs: View, Download 

Audit Logs: View, Download

Dashboard: View, Download, Print

Library: View

CAR Viewer

General UI: Access

Script: View

Schedule: View

Jobs: View

Audit Logs: View

Dashboard: View

Library: View

CAR Operations

General UI: Access

Script: View, Execute, Import, Export, Download

Schedule: View, Create, Activate, Deactivate, Update, Delete, Download

Jobs: View

Audit Logs: View

Dashboard: View

Library: View

 

Only the Manager and Author can create custom Scripts by importing from a Library Scripts.

Related Topics

Getting Started with CAR

Prerequisites for CAR

Supported Platforms

Supported Scripting Languages