Role-Based Access Control
You must have the user roles defined to get started with Qualys CAR. Not all users have access to execute all the operations; hence, user segregation is a better way to streamline the process of script execution in your environment.
With Role-based Access Control, you can ensure that the CAR users have access only to the tasks for which they have permission. These roles give an additional level of security for accomplishing required tasks and prevent them from accessing anything beyond their assigned roles.
| Roles | Permissions |
|---|---|
|
CAR Manager |
General UI: Access Script: View, Create, Review, Evaluate, Approve, Update, Deprecate, Execute, Import, Export, Download Schedule: View, Create, Update, Activate, Deactivate, Download, Delete Script Jobs: View, Download Audit Logs: View, Download Dashboard: View, Update, Create, Download, Print, Delete Library: View, Import Reports: View, Download, Create (Generate), Delete Software Package: View, Create, Review, Evaluate, Approve, Update, Deprecate, Execute Software Package Jobs: View, Download |
|
Library Script Importer (Read-Only) |
General UI: Access Script: View, Review, Evaluate, Deprecate, Execute, Schedule: View, Create, Update, Activate, Deactivate, Download, Delete Script Jobs: View, Download Audit Logs: View, Download Dashboard: View, Update, Create, Download, Print, Delete Library: View, Import Configuration: View Reports: View, Download, Create (Generate), Delete Software Package: View, Review, Evaluate, Deprecate, Execute, Approve Software Package Jobs: View, Download |
|
CAR Author |
General UI: Access Script: View, Create, Evaluate, Update, Import, Export, Download Schedule: View, Create, Update, Download, Delete Script Jobs: View Audit Logs: View Dashboard: View Library: View, Import Reports: View, Download, Create Software Package: View, Create, Evaluate, Update Software Package Jobs: View |
|
CAR Auditor |
General UI: Access Script: View, Download Schedule: View, Download Jobs: View, Download Audit Logs: View, Download Dashboard: View, Download, Print Library: View Reports: View, Download Software Package: View Software Package Jobs: View, Download |
|
CAR Viewer |
General UI: Access Script: View Schedule: View Script Jobs: View Audit Logs: View Dashboard: View Library: View Reports: View Software Package: View Software Package Jobs: View |
|
CAR Operations |
General UI: Access Script: View, Execute, Import, Export, Download Schedule: View, Create, Activate, Deactivate, Update, Delete, Download Script Jobs: View Audit Logs: View Dashboard: View Library: View Reports: View, Download Software Package: View, Execute Software Package Jobs: View |
Only the Manager and Author can create custom Scripts by importing from a Library Scripts.