This section describes the list of all functional role privileges available in the Orchestrator.
The following table lists all the role privileges available in the Operator portal.
The columns in the table indicate the following:
- Allow Privilege – Do the roles have allow access?
- Deny Privilege – Do the roles have deny access?
- Customizable – Is the role privilege available for customization in the Role Customization window?
| Feature | Name of the Role Privilege | Description | Allow Privilege | Deny Privilege | Customizable |
|---|---|---|---|---|---|
| Manage Customers | Create Customer | Grants ability to view and manage Enterprise Customers as an Operator or a Partner | Yes | No | No |
| Read Customer | |||||
| Update Customer | Yes | Yes | |||
| Delete Customer | No | No | |||
| Manage Customer | |||||
| Manage Partners | Create Partner | Grants ability to view and manage Partners | Yes | No | No |
| Read Partner | |||||
| Update Partner | |||||
| Delete Partner | |||||
| Manage Partner | |||||
| Software Images | Create Software Package | Grants access to upload and assign Edge Software Images and Application Maps | Yes | Yes | Yes |
| Read Software Package | |||||
| Update Software Package | |||||
| Delete Software Package | |||||
| Manage Software Package | |||||
| System Properties | Create System Property | Grants access to view and manage System Properties | Yes | Yes | No |
| Read System Property | Yes | ||||
| Update System Property | No | ||||
| Delete System Property | No | ||||
| Manage System Property | Yes | ||||
| Edit Restricted System Properties | Controls the ability of user to edit restricted system properties | Yes | No | No | |
| Operator Events | Create Operator Event | Grants ability to view Operator events | Yes | Yes | Yes |
| Read Operator Event | |||||
| Update Operator Event | |||||
| Delete Operator Event | |||||
| Manage Operator Event | |||||
| Operator Profiles | Create Operator Profile | Grants ability to view and manage Operator profiles | Yes | Yes | Yes |
| Read Operator Profile | |||||
| Update Operator Profile | |||||
| Delete Operator Profile | |||||
| Manage Operator Profile | |||||
| View Tab Operator Profile | Controls ability of the user to view and configure within the Operator profile menu | No | Yes | Yes | |
| Operator Users | Create Operator User | Grants ability to view and manage Operator administrative users | Yes | Yes | No |
| Read Operator User | Yes | ||||
| Update Operator User | No | ||||
| Delete Operator User | No | ||||
| Manage Operator User | Yes | ||||
| Operator Users > API Tokens | Create Operator Token | Grants ability to view and manage the operator Authentication Tokens | Yes | No | No |
| Read Operator Token | |||||
| Update Operator Token | |||||
| Delete Operator Token | |||||
| Manage Operator Token | |||||
| Gateway Pools Gateways Gateway Diagnostic bundles | Create Gateway | Grants ability to view and manage Gateway pools and Gateways as an Operator or a Partner | Yes | Yes | Yes |
| Read Gateway | |||||
| Update Gateway | |||||
| Delete Gateway | |||||
| Manage Gateway | |||||
| View Tab Gateway List | Controls the ability of user to view the list of Gateways | No | Yes | Yes | |
| Gateways > New Gateway | Create Operator PKI | Grants ability to view and manage Operator level PKI configuration including Gateway certificates and certificate authority | Yes | Yes | No |
| Gateway > Gateway Authentication Mode | Read Operator PKI | Yes | |||
| Update Operator PKI | No | ||||
| Manage Operator PKI | Yes | ||||
| Gateway Diagnostic bundles > Download Diagnostic Bundles | Download Gateway Diagnostics | Grants ability to download Gateway Diagnostics | No | Yes | Yes |
| Application Maps | Create Software Package | Grants access to upload and assign Edge software images and Application Maps | Yes | Yes | Yes |
| Read Software Package | |||||
| Update Software Package | |||||
| Delete Software Package | |||||
| Manage Software Package | |||||
| Role Customization | Create Role Customization Package | Grants access to manage role customization packages | Yes | No | No |
| Read Role Customization Package | |||||
| Update Role Customization Package | |||||
| Delete Role Customization Package | |||||
| Manage Role Customization Package | |||||
| Edge Licensing | Create License | Grants ability to view and manage Edge licensing | Yes | No | No |
| Read License | Yes | Yes | |||
| Update License | |||||
| Delete License | No | No | |||
| Manage License | |||||
| CA Summary > Gateway Certificates > Revoke Certificate | Read Operator PKI | Grants ability to view and manage operator level PKI configuration including Gateway certificates and certificate authority | Yes | Yes | Yes |
| Delete Operator PKI | No | ||||
| Manage Operator PKI | Yes | ||||
| Read Customer PKI | Grants ability to view and manage Enterprise PKI settings | Yes | No | No | |
| Delete Customer PKI | |||||
| Manage Customer PKI | |||||
| Orchestrator Authentication > Operator Authentication | Create Operator Authentication | Grants ability to view and manage Operator authentication mode, like SSO, RADIUS, or Native | Yes | Yes | Yes |
| Read Operator Authentication | |||||
| Update Operator Authentication | |||||
| Delete Operator Authentication | |||||
| Manage Operator Authentication | |||||
| Orchestrator Authentication > Enterprise Authentication | Create Customer Authentication | Grants ability to view and manage Customer authentication mode, like RADIUS or Native | Yes | Yes | Yes |
| Read Customer Authentication | |||||
| Update Customer Authentication | |||||
| Delete Customer Authentication | |||||
| Manage Customer Authentication | |||||
| Replication | Create Replication | Grants access to view and configure Orchestrator disaster recovery | Yes | Yes | No |
| Read Replication | Yes | ||||
| Update Replication | No | ||||
| Delete Replication | |||||
| Manage Replication | Yes | ||||
| Orchestrator Diagnostics > Diagnostic Bundles | Create Orchestrator Diagnostics | Grants access to request and view Orchestrator diagnostic bundles | Yes | Yes | Yes |
| Orchestrator Diagnostics > Database Statistics | Read Orchestrator Diagnostics | ||||
| Update Orchestrator Diagnostics | |||||
| Delete Orchestrator Diagnostics | |||||
| Manage Orchestrator Diagnostics | |||||
| Orchestrator Upgrade for Standalone | Create Software Package | Grants access to upload and assign Edge software images and Application Maps | Yes | Yes | Yes |
| Read Software Package | |||||
| Update Software Package | |||||
| Delete Software Package | |||||
| Manage Software Package | |||||
| Orchestrator Upgrade for DR Setup | Create Replication | Grants access to view and configure Orchestrator disaster recovery | Yes | Yes | No |
| Read Replication | Yes | ||||
| Update Replication | No | ||||
| Delete Replication | |||||
| Manage Replication | Yes | ||||
| User Agreements | Create User Agreement | Grants access to configure the customer user agreement | Yes | No | No |
| Read User Agreement | |||||
| Update User Agreement | |||||
| Delete User Agreement | |||||
| Manage User Agreement | |||||
| Orchestrator Owners Manage Orchestrators Edge Inventory | Create Edge Inventory | Grants ability to view and manage Edge inventory as needed for Redirect configuration | Yes | No | No |
| Read Edge Inventory | |||||
| Update Edge Inventory | |||||
| Delete Edge Inventory | |||||
| Manage Edge Inventory |
