Permissions
The Permissions section of the Policies allows you to assign View and Edit permissions to specific Roles. If you grant Edit permission to a role, that role is also granted View permission. Placing a checkmark in the Edit box causes a checkmark to appear in the View box.
If a role has View permission for a policy, all users with that role are able to view the policy. If a role also has Edit permission for the policy, all users with that role are able to modify the policy. Only users that have edit permissions are able to assign roles to a policy.
If multiple users have access to an endpoint/tag, they could all assign a policy to that endpoint/tag. If each user only has access to view their own policy, it would be possible for them to apply settings that the other users are not aware of. If there were conflicting settings, it would be difficult for them to determine why their policy was not producing the expected behavior. Users can see all of the policies that are applied to an endpoint, even if they do not have permission to view the content of those policies. To view the list of all policies applied to an endpoint, go to the Status tab, select the endpoint you wish to view and then select the Policies tab from the Endpoint Status Detail. You can then obtain the help of an administrator, who has access to all policies, and who is able to determine the conflicting settings.
The Permissions section consists of the following columns:
| Field | Description |
|---|---|
| Role name | The Console role to which you may grant view and edit permissions for the selected policy. |
| View | Place a check in this column to grant permission to users assigned to this role to view the selected policy. |
| Edit | Place a check in this column to grant permission to users assigned to this role to edit the selected policy. |