Role-Based Access Control
You must have the user roles defined to get started with Qualys CAR. Not all users have access to execute all the operations; hence, user segregation is a better way to streamline the process of script execution in your environment.
With Role-based Access Control, you can ensure that the CAR users have access only to the tasks for which they have permission. These roles give an additional level of security for accomplishing required tasks and prevent them from accessing anything beyond their assigned roles.
| Roles | Permissions |
|---|---|
|
CAR Manager |
General UI: Access Script: View, Create, Review, Evaluate, Approve, Update, Deprecate, Execute, Import, Export, Download Schedule: View, Create, Update, Activate, Deactivate, Download, Delete Jobs: View, Delete, Download Audit Logs: View, Download Dashboard: View, Update, Create, Download, Print, Delete Library: View, Import |
|
Library Script Importer (Read-Only) |
General UI: Access Script: View, Review, Evaluate, Deprecate, Execute, Schedule: View, Create, Update, Activate, Deactivate, Download, Delete Jobs: View, Download Audit Logs: View, Download Dashboard: View, Update, Create, Download, Print, Delete Library: View, Import Configuration: View |
|
CAR Author |
General UI: Access Script: View, Create, Evaluate, Update, Import, Export, Download Schedule: View, Create, Update, Download, Delete Jobs: View Audit Logs: View Dashboard: View Library: View, Import |
|
CAR Auditor |
General UI: Access Script: View, Download Schedule: View, Download Jobs: View, Download Audit Logs: View, Download Dashboard: View, Download, Print Library: View |
|
CAR Viewer |
General UI: Access Script: View Schedule: View Jobs: View Audit Logs: View Dashboard: View Library: View |
|
CAR Operations |
General UI: Access Script: View, Execute, Import, Export, Download Schedule: View, Create, Activate, Deactivate, Update, Delete, Download Jobs: View Audit Logs: View Dashboard: View Library: View |
Only the Manager and Author can create custom Scripts by importing from a Library Scripts.