Identity and Access Management Privileges by Legacy Role in RiskSense

Detailed information about the privileges each legacy role received after migration to the current Identity & Access Management (IAM) system.

The Identity & Access Management (IAM) feature redefines the RiskSense platform IAM system to allow for more granular control of what users can do within the platform. Previously used roles (i.e., Technician, User, Group Manager, and Manager) are no longer available. To see additional information about the role transition, see Legacy Role Transitions.

The following matrix shows each of these legacy roles (i.e., Manager, Group Manager, User, and Technician) and the privileges they received in the new system. Bold items denote important role changes.

For more information about each privilege, see the Privilege List and Descriptions page.


Privileges

Manager

Group Manager

User

Technician

API Token Control

YES

NO

NO

NO

Assessment Upload Read

YES

YES

NO

NO

Assessment Control

YES

NO

NO

NO

Application Group Assignment Control

YES

YES

NO

NO

Host Modify

YES

YES

NO

NO

Application Modify

YES

YES

NO

NO

Application Control

YES

NO

NO

NO

Host Control

YES

NO

NO

NO

Host Group Assignment Control

YES

YES

NO

NO

Automation Control

YES

NO

NO

NO

Automation Read

YES

YES

NO

NO

Automation Modify

YES

YES

NO

NO

Client Settings Control

YES

NO

NO

NO

Client Settings Read

YES

YES

YES

YES

Core Read

YES

YES

YES

YES

Multi-Client Dashboard Read

YES

YES

NO

NO

Dashboard Control

YES

NO

NO

NO

Dashboard Modify

YES

YES

YES

YES

Export Template Modify

YES

YES

YES

YES

Export Template Control

YES

NO

NO

NO

Filter Control

YES

NO

NO

NO

Filter Modify

YES

YES

YES

YES

Finding Assignment Control

YES

YES

NO

NO

Finding Self Assignment Control

YES

YES

YES

YES

Finding Control

YES

NO

NO

NO

Finding SLA Control

YES

YES

NO

NO

Group Control

YES

NO

NO

NO

Role Control

YES

NO

NO

NO

Integration Manual Upload Control

YES

NO

NO

NO

Integration File Read

YES

NO

NO

NO

Integration Control

YES

NO

NO

NO

Integration Upload Read

YES

YES

NO

NO

Network Control

YES

NO

NO

NO

Scanner Control

YES

NO

NO

NO

Tag Control

YES

NO

NO

NO

Tag Apply

YES

YES

YES

YES

Tag Modify

YES

YES

YES

YES

Ticket Control

YES

YES

YES

YES

User Read

YES

NO

NO

NO

User Role Disposition Control

YES

NO

NO

NO

User Control

YES

NO

NO

NO

User Group Assignment Control

YES

YES

NO

NO

Vulnerability KB Read

YES

YES

NO

NO

Severity Update Modify

YES

NO

NO

NO

Risk Acceptance Modify

YES

NO

NO

NO

False Positive Control

YES

YES

NO

NO

Risk Acceptance Request

YES

YES

YES

YES

Severity Update Request

YES

YES

YES

YES

Remediation Request

YES

YES

YES

YES

False Positive Request

YES

YES

YES

YES

False Positive Modify

YES

NO

NO

NO

Severity Update Control

YES

YES

NO

NO

Risk Acceptance Control

YES

YES

NO

NO

Remediation Control

YES

YES

NO

NO

Remediation Modify

YES

NO

NO

NO