Cisco Cisco Email Security Appliance C170 Guía Del Usuario
32-10
User Guide for AsyncOS 9.7 for Cisco Email Security Appliances
Chapter 32 Distributing Administrative Tasks
Managing Custom User Roles for Delegated Administration
•
View all, edit assigned: Delegated administrators can view and edit the RSA Email DLP policies
assigned to the custom user role. They can export DLP configurations. They can also view all RSA
Email DLP policies that are not assigned to the custom user role but they cannot edit them.
Delegated administrators cannot reorder DLP policies in the DLP Policy Manager or rename the
policy.
assigned to the custom user role. They can export DLP configurations. They can also view all RSA
Email DLP policies that are not assigned to the custom user role but they cannot edit them.
Delegated administrators cannot reorder DLP policies in the DLP Policy Manager or rename the
policy.
•
View all, edit all (full access): Delegated administrators have full access to all of the RSA Email
DLP policies on the appliance, including the ability to create new ones. Delegated administrators
can reorder DLP policies in the DLP Policy Manager. They cannot change the DLP mode that the
appliance uses.
DLP policies on the appliance, including the ability to create new ones. Delegated administrators
can reorder DLP policies in the DLP Policy Manager. They cannot change the DLP mode that the
appliance uses.
You can assign individual RSA Email DLP policies to the custom user role using either the DLP Policy
Manager or the Custom User Roles for Delegated Administration table on the User Roles page.
Manager or the Custom User Roles for Delegated Administration table on the User Roles page.
for more information on RSA Email DLP policies and the DLP
Policy Manager.
for information on using the Custom
User Roles for Delegated Administration list to assign RSA Email DLP policies.
Email Reporting
The Email Reporting access privileges define which reports and Email Security Monitor pages a
delegated administrator can view, depending on the custom user role’s access to mail policies, content
filters, and RSA Email DLP policies. These reports are not filtered for assigned policies; delegated
administrators can view reports for mail and DLP policies that for which they are not responsible.
delegated administrator can view, depending on the custom user role’s access to mail policies, content
filters, and RSA Email DLP policies. These reports are not filtered for assigned policies; delegated
administrators can view reports for mail and DLP policies that for which they are not responsible.
You can assign one of the following access levels for email reporting to a custom user role:
•
No access: Delegated administrators cannot view reports on the Email Security appliance.
•
View relevant reports: Delegated administrators can view reports on the Email Security Monitor
pages related to their Mail Policies and Content Filters and DLP Policies access privileges.
Delegated administrators with Mail Policies and Content Filters access privileges can view the
following Email Security Monitor pages:
pages related to their Mail Policies and Content Filters and DLP Policies access privileges.
Delegated administrators with Mail Policies and Content Filters access privileges can view the
following Email Security Monitor pages:
–
Overview
–
Incoming Mail
–
Outgoing Destinations
–
Outgoing Senders
–
Internal Users
–
Content Filters
–
Virus Outbreaks
–
Virus Types
–
Archived Reports
Delegated administrators with DLP Policies access privileges can view the following Email Security
Monitor pages:
Monitor pages:
–
Overview
–
DLP Incidents
–
Archived Reports
•
View all reports: Delegated administrators can view all reports and Email Security Monitor pages
on the Email Security appliance.
on the Email Security appliance.