Cisco Cisco Content Security Management Appliance M1070 Mode D'Emploi
13-8
AsyncOS 9.0 for Cisco Content Security Management Appliances User Guide
Chapter 13 Distributing Administrative Tasks
Assigning User Roles
Note
Remember that when you create a custom role with Publish Privilege capabilities, when user logs in,
they will not have any usable menus. They do not have the publish menu and they will land on an
non-editable landing screen since the URL and policy tabs do not have any capabilities. In effect, you
have a user that cannot publish or administer any categories or policies.
they will not have any usable menus. They do not have the publish menu and they will land on an
non-editable landing screen since the URL and policy tabs do not have any capabilities. In effect, you
have a user that cannot publish or administer any categories or policies.
The workaround to this issue is that if you want a user to be able to publish, but not to be able to manage
any categories or policies, you must create a custom category which is not used in any policy, and give
that user the ability to manage that custom category along with publishing. In this way, if they add or
delete URLs from that category, it does not affect anything.
any categories or policies, you must create a custom category which is not used in any policy, and give
that user the ability to manage that custom category along with publishing. In this way, if they add or
delete URLs from that category, it does not affect anything.
You can delegate web administration by creating and editing custom user roles.
•
•
•
Creating Custom Web User Roles
Procedure
Step 1
Choose Management Appliance > System Administration > User Roles.
Step 2
Click Add Web User Role.
Tip
Alternatively, you can create a new role by duplicating an existing Web User Role: Click the
Duplicate icon in the applicable table row, then modify the resulting copy.
Duplicate icon in the applicable table row, then modify the resulting copy.
Step 3
Enter a unique name for the user role (for example, “canadian-admins”) and a description.
Note
The name must contain only lowercase letters, numbers, and dashes. It cannot start with a dash.
Step 4
Choose whether you want the policies and custom URL categories to be visible or hidden by default.
Step 5
Choose whether you want Publish privileges turned on or off.
This privilege allows the user to publish any Configuration Master for which the user can edit Access
Policies or URL Categories.
Policies or URL Categories.
Step 6
Choose whether to start with new (empty) settings or to copy an existing custom user role. If you choose
to copy an existing user role, choose from the list the role that you want to copy.
to copy an existing user role, choose from the list the role that you want to copy.
Step 7
Click Submit to return to the User Roles page, which lists the new user role.
Note
If you have enabled the anonymized feature within web reporting, all user roles with access to
web reporting will have unrecognizable user names and roles in the interactive reports page. See
the
web reporting will have unrecognizable user names and roles in the interactive reports page. See
the
section in
The exception is the Administrator role, which is able to see actual user names in the
scheduled reports. If the anonymize feature is enabled, scheduled reports that are generated by
the Operator and Web Administrator are anonymized.
the Operator and Web Administrator are anonymized.