Default User Roles¶
There are five predefined user roles in Securden PAM with privileges as explained below:
-
Super Administrator - This is like an emergency/break-glass account which allows viewing all the work-related passwords stored in the application. They can also view the overall administration of the application, including user management.
-
Administrator - They can administer the application, including user management. Unlike super administrators, administrators can see only the passwords that are owned by them and the ones that are shared with them.
-
Account Manager - They can add accounts to the application. They can also perform all administrative tasks related to the accounts.
-
User - They can view the accounts shared by administrators. They can manually add accounts and share them with others. (They do not have the privilege to import accounts). If needed, you can disable account addition privilege for users.
-
Auditor - They can view the reports and audit trails generated in the application. They can manually add accounts and share them with others.