User Roles Comparison (Vulnerability Management)

The following table provides a comparison of privileges granted to user roles for vulnerability management.

solid bullet means privilege is granted to the user role = privilege is granted to the user role

solid bullet means privilege is granted to the user role* = privilege that can be granted to the user role, depending on when subscription was created

o = privilege that can be assigned by a Manager

X = privilege that can be assigned by a Manager ONLY when the subscription is configured to allow it

Manager privileges apply to all user configurations (such as asset groups, option profiles, schedules, and saved results), regardless of who created them. Unit Manager privileges apply to user configurations created within their respective business units. Scanner and Reader privileges apply to personal configurations only. Remediation User has pre-defined and limited privileges. User Administrator has privileges to create and edit users, except other User Administrators. The KnowledgeBase Only role is only available when enabled for your subscription. Only a Manager can assign this role. Learn more about user roles and permissions

Privileges

Manager

Unit Manager

Scanner

Reader

Remediation User

User Administrator

KnowledgeBase Only

Account Setup

     

Configure your dashboard

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

Change your Home page

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

Change your password

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

Reporting

     

Run reports

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

Manage report templates

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

Manage distribution groups

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

Ignore vulnerabilities

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

o

o

 

 

 

Purge host information

solid bullet means privilege is granted to the user role

o

o

o

 

 

 

Remediation

     

Manually create tickets

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

Edit tickets

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

Close/ignore tickets

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

o

o

solid bullet means privilege is granted to the user role

 

 

Delete tickets

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

o

o

 

 

 

Manage remediation policy

solid bullet means privilege is granted to the user role

o

 

 

 

 

 

Scanner Appliances

     

Install scanner appliances

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

 

Manage virtual scanner appliances

solid bullet means privilege is granted to the user role

o

X

 

 

 

 

Network Mapping & Vulnerability Scanning

     

View map and scan history

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

Launch maps and scans

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

Schedule maps and scans

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

Cancel maps and scans

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

Pause/resume scans

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

Setup storage options to auto delete results

solid bullet means privilege is granted to the user role

   

 

 

 

 

Launch and schedule EC2 scans

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

General Management

     

Manage search lists

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

Manage asset tags (Learn more)

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role*

 

 

 

Manage asset groups

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

Manage option profiles

solid bullet means privilege is granted to the user role

o

o

 

 

 

 

Distribute global option profiles and templates

solid bullet means privilege is granted to the user role

o

 

 

 

 

 

Manage user accounts

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

solid bullet means privilege is granted to the user role

 

Manage authentication records and vaults

solid bullet means privilege is granted to the user role

o

X

 

 

 

 

Add and edit host assets

solid bullet means privilege is granted to the user role

o

X

       

Remove assets

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Manage business units

solid bullet means privilege is granted to the user role

 

 

 

 

solid bullet means privilege is granted to the user role

 

Manage distribution groups

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

solid bullet means privilege is granted to the user role

 

Manage networks

solid bullet means privilege is granted to the user role

           

Subscription Setup

     

Edit global excluded hosts list

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

 

 

 

 

Set global user permissions

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Setup business units - enable the new IP limit feature

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Setup business risk

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Setup security risk

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Define host attribute names

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Setup CVSS

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Set account and password security options

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Set remediation transition options

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Set the primary contact for the subscription

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

KnowledgeBase

     

View vulnerabilities

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

solid bullet means privilege is granted to the user role

 

solid bullet means privilege is granted to the user role

Edit vulnerabilities - severity and content

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Add OVAL vulnerabilities

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Disable vulnerabilities

solid bullet means privilege is granted to the user role

 

 

 

 

 

 

Configure custom vulnerability notifications 

solid bullet means privilege is granted to the user role

 

 

 

 

 

solid bullet means privilege is granted to the user role