Skip to main content
McAfee Enterprise MVISION Cloud

Administrator role settings

The administrator role settings are used for configuring roles that can be assigned to administrators of Secure Web Gateway.

Administrator role settings

Rights are granted to particular administrator roles.

Option Definition
Name Provides a name for an administrator role.
Dashboard accessible Allows access to the Dashboard tab on the user interface.
Policy - Rules accessible Allows access to the rules and rule sets on the Rule Sets tab.
If this access is allowed, the following access right can also be granted.
  • Top-level move and create — Allows the administrator to move top-level rule sets and to create new top-level rule sets.
Policy - Lists accessible Allows access to the Lists tab.
If this access is allowed, the following access rights can also be granted.
  • List creation — Allows an administrator to create lists.
  • SSO catalog — Allows an administrator to access the SSO catalog.
Policy - Settings accessible

Allows an administrator access to the Configuration tab to configure settings of the appliance system.
If this access is allowed, the following access right can also be granted.

  • File editor — Allows an administrator to use the File Editor for editing files of the appliance system.

NOTE: Granting this access right also gives an administrator root privilege when accessing an appliance on the command line of a system console.

Accounts accessible Allows access to the Accounts tab for administrator accounts.
 
Troubleshooting accessible

Allows access to the Troubleshooting tab to carry out troubleshooting measures.

If this access is allowed, the following access rights can also be granted.

  • Files — Allows access to files of the appliance system.
  • Log files — Allows access to log files, which record events and use of appliance functions, for example, web access by users.
  • Rule tracing — Allows access to the options for rule tracing in order to detect and resolve issues with rule processing.
  • Feedback — Allows access to feedback files, which record processes that were running before a function failed.
  • Core files — Allows access to core files, which record memory content at the time when a function failed and caused the appliance to finish operation.
  • Connection tracing — Allows access to files that record activities occurring on connections between an appliance and other network components.
  • Packet tracing — Allows access to files that record network activities performed by an appliance.
  • Network tools — Allows access to network tools, which are used to retrieve status information about network components. These tools include, for example, ping, nslookup, and ipneigh.
  • System tools — Allows access to system tools, which are used to carry out activities related to the appliance system, for example, performing a restart or displaying the anti-malware filtering threads that are currently running.
  • Sync to cloud — Allows access to the option that enables rule sets that are implemented on Secure Web Gateway also for cloud use.
  • Backup/Restore — Allows access to options for creating a backup of an appliance configuration and for restoring it to an appliance.
  • Reset password — Allows access to options for resetting the root password that is required when accessing an appliance over the command line on a system console.

NOTE: Granting this access right also gives an administrator root privilege when accessing an appliance on the command line of a system console.

Permissions accessible Allows access to the Permissions tabs that are provided when rules, lists, and settings for a web security policy are created.

Creating these items includes giving permission for reading or writing access to any of them.
Read-only admin Allows only reading access to the user interface.
REST Interface accessible Allows access to the REST Interface.
  • Was this article helpful?