Cisco Cisco Firepower Management Center 4000

When you select an unselected permission, all of its children are selected, and the multi-value 
permissions choose the first value. If you deselect a high-level permission, all of its children are 
deselected also. Selected permissions without all children selected appear in italic text.

Note that choosing to copy a predefined user role to use as the base for your custom role preselects the 
permissions associated with that predefined role. For more information on copying predefined user roles, 
see 

The current escalation target role is listed beside the role escalation check box. If you select this check 
box, you can then choose to authenticate escalations either with the assigned user’s password or with the 
password of another specified user role. For more information, see 

Click 

.

The custom user role is created and the User Roles page appears again.

Any

You can copy an existing role to use as the basis for a new custom role. This preselects the existing role’s 
permissions in the User Role Editor so you can model one role on another.

Admin

Select 

.

The User Management page appears.

Click the 

 tab.

The User Roles page appears.

Click the copy icon (

) next to the user role you want to copy.

The User Role Editor page appears with the copied role’s permissions preselected.

Note that you can copy both custom and predefined user roles in this way.

Any

Unlike predefined user roles, you can delete custom roles that are no longer necessary. If you want to 
disable a custom role without removing it entirely, you can deactivate it instead; for more information, 
refer to the procedure in 

. Note that you cannot delete your 

own user role or a role that is set as a default user role in the system policy. For more information, see 

Admin