You can create a customized package and apply the package to the existing user roles in the SD-WAN Orchestrator.

Procedure

  1. In the Enterprise portal, click Role Customization.
  2. Click New Package.
  3. In the Role Customization Package Editor window, enter the following:
    1. Enter a Name and a Description for the new custom package.
    2. In the Roles pane, select a user role and click Add/Remove Privileges to customize the privileges for the selected role.
      Note: You can only add or remove Deny Privileges, that is take away privileges from the system default. You cannot grant additional privileges to a role using this option.
      In the Assign Privileges window, select the features from the Available Deny Privileges and move them to the Selected Deny Privileges pane.
      Note: You can assign only Deny privileges to the user roles.
      Click OK.
  4. Repeat assigning privileges to the user roles in the Role Customization Package Editor window.
  5. Select the Show Modified checkbox to filter and view the customized privileges. The changes to the privileges are highlighted in a different color.
  6. Click Create. You can click CSV to download the user role privileges of selected user role, in a CSV format.
  7. The new package details are displayed in the Role Customization Packages window.
  8. To edit the privileges, click the link to the package or select the package and click Actions > Modify Package. In the Role Customization Package Editor window that opens, add or remove Deny Privileges to the user roles in the package and click OK.

What to do next

Select the customized package and click Actions > Apply Package to apply the customization available in the selected package to the existing user roles across the SD-WAN Orchestrator.

You can edit the Deny privileges in an applied package whenever required. After modifying the privileges in the Role Customization Package Editor window, click OK to save and apply the changes to the user roles.

Note: You can download the customized user role privileges as a JSON file and upload the customized package to another Orchestrator. For more information, see Upload Customized Package.