Version: 4.32

Role permissions settings

Certificates

Defines the available actions for managing certificates and their assigned groups.

Certificate	Permissions
Add from file	Install certificates on the unit.
Add from CA (FNMT)	Perform operations related to FNMT.
Edit	Disable/Enable a certificate. Edit the certificate alias and the usage reason field. Set the certificate PIN.
Replace	Replace certificates.
Delete	Delete a certificate along with its associated private key. This action is permanent.
Manage owner	Edit or assign an owner to a certificate. Owners can use the certificate, overriding all policies.

Firmaprofesional	Permissions
Issue from Firmaprofesional	Use the API to request and consolidate certificates on the server. The generated certificates will be assigned to the groups defined in the role.
Download Firmaprofesional certificate	Download a copy of your personal certificate from the personal area. Each certificate can be downloaded once.
Allow operator copy	Obtain a backup copy of the certificate.

Pending	Permissions
Install	Upload personal certificates for later activation.
Delete	Delete activation-pending certificates.

CA	Permissions
Install	Install CA certificates on the unit.
Delete	Delete CA certificates.

Email	Permissions
Install	Install email certificates on the unit.
Delete	Delete email certificates.

Alerts	Permissions
View	View any configured certificate alerts.
Create	Create certificate alerts.
Edit	Edit any already created certificate alerts.
Delete	Delete any already created certificate alerts.

Defines the available actions for managing policies and groups of sites and applications.

Section	Permissions
User Policies	View, edit, delete, and create policies.
Websites	View, edit, delete, and create site groups.
Applications	View, edit, delete, and create application groups.

tip

For these settings to be applicable, the user's role must also be assigned to the policy. For more information, see Policy operations.

Defines the types of events the role can view in the event viewer.

Section	Permissions
Users	Allows users to see events related to other users within the domain scoped by this role.
Certificates	Grants permission to view events related to certificates in the certificate group assigned to this role.
Policies	Allows users to view events related to policies assigned to this role.
All	Grants permission to view all event logs of the Redtrust instance.

Defines the available actions on domain users.

Domain Users	Permissions
View	Allows users to view domain settings and users.
Edit	Grants users permission to edit domain settings and users.

Defines the system settings the role can view and edit.

Section	Permissions
Services	View and edit the Services tab in the System section.
External Log Services	View and edit external log services configuration.
High Availability	View and Edit the HA tab in the System section.
System Log	View the audit list tab in the Events section.

Defines the unit settings the role can manage.

Section	Permissions
View	View system configuration (Unit, Server configuration, and Agent configuration tabs).
Edit	View and edit system configuration (Unit, Server configuration, and Agent configuration tabs).

Server Logs	Permissions
Download	Download server logs.

Network	Permissions
View	View the server's network configuration and service ports.
Edit	View and edit the server's network configuration and service ports.

Backup	Permissions
Generate	Generate a backup copy of the server database.
Restore	Restore a backup copy of the server database.

Maintenance	Permissions
Upgrade/Downgrade	Upgrade the server version or revert to a previous version.
Restart/Shutdown	Manage server restart and shutdown operations from the admin console.

Defines the agent settings the role can view.

Section	Permissions
Manage	View the Agent Management tab in the System section.
Update Packages	View the Agent Updates tab in the System section.