What do the different user roles mean?
Use this guide when assigning a role to a new or existing user in Security Center. Choose between the following:
Auditor
-
Read-only access.
-
Can view everything a Manager can access.
-
Can not make changes.
-
Suitable for compliance teams, security auditors, or stakeholders who need full visibility without modifying data.
-
Can be extended with additional permissions using teams to tailor access control.
Manager
-
Can manage everything except account administration.
-
Handles day-to-day security operations, such as:
-
Managing assets.
-
Managing vulnerabilities.
-
Managing scans.
-
Managing teams.
-
-
Can not manage account-level settings, user management, or billing.
Superuser
-
Full access to all functions and features in a Security Center.
-
Can create other superusers with the same permissions.
-
Cannot edit or delete other superusers.
Primary Superuser
-
Full access to all functions and features in a Security Center.
-
Can create other superusers with the same permissions.
-
Cannot edit or delete other superusers.
-
Every Security Center is created with a primary superuser account.
Standard
- Are not able to create other users
- Can only see their own activity log
- Are not able to set any other ownership on objects except for themselves
- Are not able to edit or delete other users
Quick decision guide
- Base access with no explicit permissions > Standard
-
Need read-only access? > Auditor
-
Need operational access but no account administration? > Manager
-
Need full access? > Superuser
-
Need full access and ability to create other superusers? > Primary Superuser
Read more:
https://support.holmsecurity.com/knowledge/what-permissions-are-supported-for-custom-roles
https://support.holmsecurity.com/knowledge/how-do-i-change-the-primary-superuser