Cisco Cisco Content Security Management Appliance M160 Guía Del Usuario
13-7
AsyncOS 9.1 for Cisco Content Security Management Appliances User Guide
Chapter 13 Distributing Administrative Tasks
Assigning User Roles
Quarantines
If you grant a custom role access to quarantines, users to whom you assign this role can search for, view,
release, or delete messages in all quarantines on this Security Management appliance.
release, or delete messages in all quarantines on this Security Management appliance.
Before users can access quarantines, you must enable that access. See
,
, and
For complete information about the spam quarantine, including instructions for setting up your
appliances to enable access to this quarantine from the Security Management appliance, see the
appliances to enable access to this quarantine from the Security Management appliance, see the
chapter.
Creating Custom Email User Roles
You can create custom email user roles for access to Email Reporting, Message Tracking, and
quarantines.
quarantines.
For descriptions of the access that each of these options permits, see
and its subsections.
Note
To grant more granular access or access to other features, reports, or policies, create custom user roles
directly on each Email Security appliance.
directly on each Email Security appliance.
Procedure
Step 1
Choose Management Appliance > System Administration > User Roles.
Step 2
Click Add Email User Role.
Tip
Alternatively, you can create a new role by duplicating an existing Email User Role: Click the
Duplicate icon in the applicable table row, then modify the resulting copy.
Duplicate icon in the applicable table row, then modify the resulting copy.
Step 3
Enter a unique name for the user role (for example, “dlp-auditor”) and a description.
•
Email and Web custom user role names must not be duplicated.
•
The name must contain only lowercase letters, numbers, and dashes. It cannot start with a dash or a
number.
number.
•
If you grant users with this role access to centralized policy quarantines, and you also want users
with this role to be able to specify those centralized quarantines in message and content filters and
DLP Message Actions on an Email Security appliance, the name of the custom role must be the same
on both appliances.
with this role to be able to specify those centralized quarantines in message and content filters and
DLP Message Actions on an Email Security appliance, the name of the custom role must be the same
on both appliances.
Step 4
Choose the access privileges to enable for this role.
Step 5
Click Submit to return to the User Roles page, which lists the new user role.
Step 6
If you limited access by Reporting Group, click the no groups selected link in the Email Reporting
column for the user role, then choose at least one Reporting Group.
column for the user role, then choose at least one Reporting Group.
Step 7
Commit your changes.
Step 8
If you granted this role access to quarantines, enable access for this role:
See: