Welcome to
Help Desk

Product Updates
Training
Support
Ideas Contact Support

Role Based Access in Egnyte Secure & Govern

Follow

Users can now be added to multiple roles within Secure & Govern. Secure & Govern's RBAC is an additive model, so a user’s effective permissions are the sum of their role assignments.

In cases where a user has multiple roles, an administrator should configure how RBAC is applied, so any conflicts between roles are addressed and a user does not end up with more permissions than intended. This is one way that organizations can ensure separation of duties.

Roles based access (RBAC) allows Admins to restrict access and delegate specific responsibilities to other users. You can create distinct roles to allocate responsibilities among your users. For example, you might want only your legal team the ability to view the sensitive content in an unredacted form within your repository, which you can now accomplish by creating a separate role for them. 

Predefined Default Roles

Egnyte Secure & Govern supports five predefined default roles: Admin Role, Basic User Role, Power User Role, Data Owner Role and Basic Viewer Role. These are the most commonly used roles in most organizations. The entitlements of these roles have been predefined and can be directly assigned to individual users. The role hierarchy and entitlements are briefly described below

  • Admin Role has full access including all the privileges and permissions for the entire system.
  • Power User Role has limited access to the issues, permissions and sensitive content views. These users can only see folders where they are folder owners in a content source.
  • Basic User Role has limited access and only has access to the issues View
  • Data Owner Role has limited access to permissions and sensitive content views. These users will only be able to see folders where assigned as Data Owner.
  • Basic Viewer Role is the most restrictive role. Users will have the ability to log into Secure & Govern and only allows users to comment on issues they are assigned

For more information on Data Owner restricted view option see Data Owner - Restricted Views in Secure & Govern.

Custom Roles 
With Custom Role, administrators can grant precise privileges based on each user's responsibilities and business needs.

 Create a New Role

  1. Navigate to the Settings, then click on  User Management and click on the Roles tab.
  2. Click the 'Add Role' button.

    RBA_-_1.png

  3. Select the abilities that you want to provide to the role and then click the "Save Role" button to save the role.

    mceclip0.png

  4. You can also Edit, View, or Delete the Role.

    RBA_-_3.png

Assign User to a Role

Using Users Tab

  1. Navigate to the Settings, then click on  User Management and click on the Users tab.
  2. Click the 'Add User' button.

    mceclip1.png

  3. Enter the details about the user and then assign the Role(s) by selecting from the list of options.

    mceclip2.png

  4. Click on "Add" to create the User with the desired Role.

Using Roles Tab

  1. Navigate to the Settings, then click on  User Management and click on the Roles tab.
  2. Click the Edit role option for the desired user role

    mceclip3.png

  3. Got to the Users with this role tab
  4. Select the Add user to role button
  5. Enter a username or email address in the Add a new user window

    mceclip4.png

  6. Select the Add button

Reviewing User Role Assignments & Effective Permissions

  1. Navigate to the Settings, then click on  User Management and click on the Users tab.
  2. Click the ">" (arrow) to the right of the desired user

    mceclip5.png
  3. Users detail window appears.
  4. From here, you can review the user's role assignments. You can also remove a role assignment by selecting the "trash can" symbol found to the right of the role.

    mceclip7.png

  5. Select Show effective permissions to review a users full system permissions

    mceclip8.png

 

Was this article helpful?
0 out of 0 found this helpful

For technical assistance, please contact us.