User Roles and Permissions for ETM
Qualys Enterprise TruRisk Management (ETM) has two out-of-the-box (OOTB) roles for ETM users:
- ETM Manager: This role has all the permissions, Unified Dashboard permissions and Tagging permissions.
- ETM Viewer: This role has View only permissions for the application.
View ETM Roles and Permissions
On the Role Management tab, create a role and related permissions. For more information, see Creating a Role and Managing Roles and Permissions.
Assigning tags and asset groups to a user
You can assign the required tags and asset groups to the users. For more information, see Managing Users.
User Roles Comparison
The ETM application has several access permissions that are assigned to each user role. The following table compares these permissions granted to the default user roles for ETM:
| Permissions | Description | Default Roles | |
|---|---|---|---|
| ETM Manager | ETM Viewer | ||
| ETM Permissions | ETM UI Access: Allows the sub-user to view the ETM UI. | ✔ | ✔ |
| Response Management Permissions | Manage Response Actions: Allows users to view the Responses tab. | ||
| Create, Edit, Delete your own Action: Enables the New Action option. It also allows the sub-user to create, edit and delete their actions. | ✔ | ||
| Edit and Delete any Action: Allows the user to edit and delete any action created by sub-users and super-users. | ✔ | ||
| Create, Edit, Delete your own Rule: Enables the New Rule option. It also allows the sub-user to create, edit, and delete their own created rule. | ✔ | ||
| Edit and Delete any Rule: Allows the user to edit and delete any rule created by the sub-user and super-user. | ✔ | ||
| Configuration Permissions | View Company Profile: Allows the user to view the Company Profile tab. | ✔ | ✔ |
| Edit Company Profile: Allows the user to edit the company profile. | |||
| View Company Risk Appetite: Allows the user to view the company risk appetite. | ✔ | ||
| Edit Company Risk Appetite: Allows users to edit the company Risk Appetite. | |||
| Prioritization Permissions | Create, Edit, Delete your own Prioritization Plan: Allows the sub-user to create, edit, and delete own prioritization plans. | ✔ | |
| View Prioritization Plan: Allows the user to view the Prioritization tab. | ✔ | ✔ | |
|
Edit Prioritization Plan: Allows the sub-user to edit any prioritization plan. |
✔ | ||
| Delete Prioritization Plan: Allows the sub-user to delete any prioritization plan. | ✔ | ||
| Download Prioritization Report: Allows the sub-user to download any prioritization plan report. | ✔ | ||
| Business Entity Permissions | Create, Edit, Delete your own Business Entity: Allows the sub-user to create, edit, and delete their business entity. | ✔ | |
| View Business Entity: Allows the user to view the Business Entity tab. | ✔ | ✔ | |
| Edit Business Entity: Allows the sub-user to edit any business entity. | ✔ | ||
| Delete Business Entity: Allows the sub-user to delete any business entity. | ✔ | ||
| Edit Risk Appetite: Allows the sub-user to edit the Risk Appetite for any business entity. | ✔ | ||
| Edit Risk Quantification: Allows the sub-user to edit the Risk Appetite for any business entity. | ✔ | ||
| Finding Rule Permissions | View Finding Identification Rules: Allows the user to view the Identification tab under the Finding Rules tab. | ✔ | ✔ |
| View Finding Merge Rules: Allows the user to view the Merge tab under the Finding Rules tab. | ✔ | ✔ | |
| Edit Finding Merge Rules: Allows the user to add attributes under the Custom Merge tab. | ✔ | ||