Cisco Cisco Email Security Appliance C160 Mode D'Emploi
32-3
Cisco AsyncOS 9.1 for Email User Guide
Chapter 32 Distributing Administrative Tasks
Working with User Accounts
can access both the GUI and the CLI, except the Help Desk User role and
custom user roles, which can only access the GUI.
If you use an LDAP directory to authenticate users, you assign directory groups to user roles instead of
individual users. When you assign a directory group to a user role, each user in that group receives the
permissions defined for the user role. For more information, see
individual users. When you assign a directory group to a user role, each user in that group receives the
permissions defined for the user role. For more information, see
Related Topics
•
Managing Users
The Users page lists the existing users for the system, including the username, full name, and user type
or group.
or group.
From the Users page, you can:
•
Add new users. For more information, see
.
•
Delete users. For more information, see
•
Edit users, such as changing a user’s password and locking and unlocking a user’s account. For more
information, see
information, see
.
Read-Only Operator
User accounts with the Read-Only Operator role have access to view
configuration information. Users with the Read-Only Operator role can
make and submit changes to see how to configure a feature, but they cannot
commit them. Users with this role can manage messages in quarantines, if
access is enabled in a quarantine.
configuration information. Users with the Read-Only Operator role can
make and submit changes to see how to configure a feature, but they cannot
commit them. Users with this role can manage messages in quarantines, if
access is enabled in a quarantine.
Users with this role cannot access the following:
•
File system, FTP, or SCP.
•
Settings for creating, editing, deleting, or centralizing quarantines.
Help Desk User
User accounts with the Help Desk User role are restricted to:
•
Message tracking.
•
Managing messages in quarantines.
Users with this role cannot access to the rest of the system, including the
CLI. You need to enable access in each quarantine before a user with this
role can manage them.
CLI. You need to enable access in each quarantine before a user with this
role can manage them.
Custom user role
User accounts with a custom user role can only access email security
features assigned to the role. These features can be any combination of DLP
policies, email policies, reports, quarantines, local message tracking,
encryption profiles, and the Trace debugging tool. The users cannot access
system configuration features, including enabling features globally. Only
administrators can define custom user roles. See
features assigned to the role. These features can be any combination of DLP
policies, email policies, reports, quarantines, local message tracking,
encryption profiles, and the Trace debugging tool. The users cannot access
system configuration features, including enabling features globally. Only
administrators can define custom user roles. See
for more information.
Note
Users assigned to custom roles cannot access the CLI.
Table 32-1
User Roles Listing
User Role
Description