Roles
Role Based Access Control
RegScale provides a number of preset roles that provide limited access to certain functionality within the system. Roles should be applied to each user to ensure least privilege access to only the role(s) necessary to perform their job functions. These roles are shown below:
Role Name | Access Type | Module Access |
---|---|---|
Administrator | Create, Read, Update, Delete | Full access to all modules, Setup for their tenant, Catalogues Management |
AssessmentUser | Create, Read, Update, Delete | Assessment Module, Questionnaire Module |
AssetUser | Create, Read, Update, Delete | Asset Module |
DataCallUser | Create, Read, Update, Delete | Data Call Module |
ExceptionUser | Create, Read, Update, Delete | Exception Module |
GeneralUser | Create, Read, Update, Delete | All Modules, no access to setup or Admin functions |
GlobalAdmin | Create, Read, Update, Delete | Tenant Configuration |
IncidentUser | Create, Read, Update, Delete | Incident Module |
InterconnectUser | Create, Read, Update, Delete | Interconnect Module |
IssueScreener | Create, Read, Update, Delete | Issue Screening Tab in the Issues Module |
IssueUser | Create, Read, Update, Delete | Issue Module, Causal Analysis Module |
Maintainer | Create, Read, Update, Delete | Catalogs, Security Controls, and Importer Tools |
Manager | Create, Read, Update, Delete | Same as general user + ability to impersonate users on the workbench |
PolicyUser | Create, Read, Update, Delete | Policy Module |
ProjectUser | Create, Read, Update, Delete | Project Module |
ReadOnly | Read | All Modules |
RiskUser | Create, Read, Update, Delete | Risk Module |
SecurityPlanUser | Create, Read, Update, Delete | Security Plan Module, Security Profiles, Control Implementations |
SupplyChainUser | Create, Read, Update, Delete | Supply Chain Module |
ThreatUser | Create, Read, Update, Delete | Threat Module |
Assign Roles
To set a role, navigate to Setup
, Identity and Access Management, then click the roles button the the far right. The steps to set a role are as follows:
- Pick the appropriate role from the drop down list
- Select the user you want to assign to the role
- Click the blue "Add User to Role" button
- Green alert should notify you that the user was added successfully
- If the user is currently logged in, they will need to log out and back in to reset their permissions and have the new roles applied
Updated 12 months ago