Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Anchor
Overview
Overview
Overview

In the Armor the Armor Management Portal (AMP)roles are similar to job titles that you can create and assign to your users. When you create a new role, you can populate that role with specific permissions. These permissions determine the type of access a user has in AMP. For example, you can create an an Accounting role role, and then you can add specific permissions to only give the user access to accounting-related features in AMP, such as the permission to view invoices in the Invoices screen screen.  

When you create a new user, you must assign that user a role. You can create a new role, and then populate that role with your specified permissions. Or, you can use a default role with permissions already enabled in AMP. For your convenience, when you create a new user, you can select and assign a default role (Admin, Billing, Technical) to that user.

The Admin role contains every permission available. In other words, there are no restrictions in AMP. 

The Billing role contains mostly read-only permissions.

The Technical role contains reads-only and write-only permissions, with a focus on security and infrastructure resources. 

Note

You cannot edit the permissions within the default roles. 

...

Expand
titlePermissions in the Admin role

By default, the Admin role contains every permission. The Admin role is automatically assigned to a new administrator account.

For every available, see Review available permissions.


...


Expand
titlePermissions in Default permissions for the Billing role

By default, the Billing role contains the permissions below. 

At a high-level, the default Billing role mostly provides read-only access to users in AMP.

Review the following permissions:table to better understand the specific permissions associated with the Billing role. 

By default, the Technical role contains the following permissions: 

PermissionDescription
Read Entity MetadataView notes and tags

Read Identity

View account information

Read Workloads

View account workloads

Write Workload

Create, update, and remove account workloads

Read Compliance

View vulnerability scanning product information

Write Compliance

Update (upgrade, downgrade or delete) vulnerability scanning options

Read AVAM

View Malware Protection detail

Read Dashboard Statistics

View the data that populates the security dashboard

Read FIM

View File Integrity Monitoring details.

Read Connections

Write Connectors

Read Firewall

View firewall rules

Write Firewall

Add and update firewall rules

Update Personal Identity

Update the challenge phrase and challenge response

Read Network IP

View IP address allocations and assignments

Write Network IP

Add, update, and remove IP address assignments

Read Network L2L

View L2L network tunnels

Write Network L2L

Add, update, and remove L2L tunnels

View Core License

View core license information for your account

Read Locations

View locations available for this account

Read LogManagement

View Log Management information

Read LogSearch

View Log Search information

Write LogManagement

Update log management services

Read Monitoring

View account resources

Read Network Nat

View DNAT assignments per virtual machine

Write Network Nat

Add and remove DNAT assignments

Read Network Bandwidth

View network transfer history

Write Entity Metadata

Updates notes and tags

Read Notifications

View account notifications

Read Orders

View account resources

Write Orders

Add additional account resources

Read OS Packages

View OS patching details

Read Product Catalog

View available products to add to your account

Global Search

Search throughout AMP for various resource needs

Write Secret

Read Endpoints

Read SSL VPN Devices and Users

View SSL VPN users and details

Read Virtual Machine Stats

View graph data for virtual machines

Read Storage

View disk and storage information for your account

View Subscriptions

View current subscriptions for your account

Write Subscriptions

Add subscriptions to your account

Read Tasks

View task information

Write Tasks

Write task information

Read Templates

View template details

Write Templates

Create, update, and remove account templates

Read Tickets

View open tickets

Write Tickets

Create a support ticket

Read Virtual Data Centers

Read Server Replication

Read Virtual Machines

View virtual machine details

Scale Virtual Machine

Upgrade or downgrade the size of a virtual machine

Write Server Replication

Write Virtual Machine

Create, update, and remove virtual machines
View Vulnerability ScanView vulnerability scanning report details
AMP ScreenPermissionDescription

Read Entity Metadata

View notes and tagsRead IdentityView account informationRead WorkloadsView account workloadsRead Payment InformationView payment information

Write Payment Information

Update payment informationRead ComplianceView vulnerability scanning product informationRead AVAMView Malware Protection detailRead Dashboard StatisticsView the data that populates the security dashboardRead FIMView File Integrity Monitoring details.Read ConnectionsRead FirewallView account firewall rulesUpdate Personal IdentityUpdate the challenge phrase and challenge responseView InvoicesView the invoices associated with your accountRead Network IPView account IP allocations and assignmentsRead Network L2LView L2L network tunnelsView Core LicenseView core license information for your accountRead LocationsView locations available for this accountRead LogManagementView Log Management informationRead LogSearchView Log Search informationRead MonitoringView account resourcesRead Network NatView DNAT assignments per VM.Read Network BandwidthView network transfer historyWrite Entity MetadataUpdates notes and tagsRead NotificationsView account notificationsRead OrdersView account resourcesRead OS PackagesView OS patching detailsRead Product CatalogRead Product CatalogGlobal SearchPerform Global SearchRead EndpointsRead SSL VPN Devices and UsersView SSL VPN account users and detailsRead Virtual Machine StatsView graph data for virtual machinesRead StorageView disk and storage information for the accountView SubscriptionsView subscriptions for your accountRead TasksView task informationRead TemplatesView template detailsRead TicketsView open tickets in your accountWrite TicketsCreate a support ticketRead Virtual Data CentersView account virtual data center details.Read Server ReplicationRead Virtual MachinesView virtual machine detailsView Vulnerability ScansView vulnerability scanning report details
Expand
titlePermissions in the Technical role

Security Dashboard (landing page)

Read Dashboard StatisticsThis permissions allows you to view the widgets (and corresponding data) that populate the security dashboard. These widgets display a high-level status of your virtual machines, agents, and open security incidents.

Malware Protection

Read AVAMThis permissions allows you to view antivirus and anti-malware (malware protection) details for each virtual machine.

FIM

Read FIMThis permissions allows you to view file integrity details for each virtual machine.

Patching

Read OS PackagesThis permissions allows you to view details OS patching details for each virtual machine.

Log Management

Read LogManagement

This permissions allows you to view high-level information for log collection for each virtual machine, such as:

  • Date logs were last received
  • Average size of collected logs
  • Log Status
Log Management

Read LogSearch

This permission allows you to view details for log collection, such as the specific log message, for each virtual machine.

Firewall

Read Firewall

This permissions allows you to view details for firewall rules for each virtual machine.

MarketplaceRead Product Catalog

This permission allows you to view available add-on products.

You must have this permission enabled in your account in order to view purchased services and also to order new services in AMP.

Marketplace (and My Products)View SubscriptionsThis permission allows you to view subscription-based add-on products in the My Products screen of the User Details screen.
WorkloadsRead Workload(s)

This permission allows you to view high-level data for workloads, such as

  • the associated data center
  • the number of tiers within the workload
  • the number of virtual machines within the workload
Virtual MachinesRead Virtual Machine StatsThis permission allows you to view usage data for a virtual data. This data is displayed in a line graph.
Virtual MachinesRead Virtual Machine(s)

This permission allows you to view data for a virtual machine, such as

  • Operating system
  • Size
  • Corresponding workload
  • Status
Virtual MachinesRead Server Replication

This permission allows you to view high-level data for the server replication (disaster recovery) add-on product. Specifically, this permission allows you to view:

  • The status of the add-on product (configuring, enabled, disabled)
  • The location of the primary data center
  • The location of the failover data center
  • The status of the replication
Virtual MachinesRead TasksThis permission allows you to view pending tasks, such as a scheduled delete or downsize of a virtual machine.
Virtual MachinesRead StorageThis permission allows you to view disk and storage information for a virtual machine.
IP AddressesRead Network IPThis permission allows you to view data for unassigned and assigned public and private IP addresses
IP AddressesRead Network NATThis permission allows you to view DNAT assignments.
L2L VPNRead Network L2LThis permission allows you to view high-level data for your L2L network tunnels.
SSL/VPNRead SSL VPN Devices and UsersThis permission allows you to view the status of your users' SSL VPN client.
ComplianceRead ComplianceThis permission allows you to view information for the vulnerability scanning add-on product information. Specifically, you will see the status of the add-on product.

Tickets + Notification

Read Ticket(s)This permission allows you to view previous and current support tickets.
Tickets + NotificationWrite Ticket(s)This permission allows you to create and follow a support ticket.
Overview (Account screen)Read Identity

This permission allows you to view the account-level information, such as

  • Account overview
  • Armor contacts
  • User profiles
  • Roles and permissions
User DetailUpdate Personal Identity

This permission allows you to update your personal account information, such as your:

  • Password
  • Challenge Phrase
  • Challenge Response
User DetailRead Notification(s)This permission allows you to view the notification preferences for your users, such as a user's preference to receive an email regarding technical updates.
InvoicesView InvoicesThis permission allows you to view current and previous invoices.
Payment MethodsRead Payment InformationThis permission allows you to view current payment information, such as the primary payment method.
Payment MethodsWrite / Update Payment InformationThis permission allows you to update the payment information, such as adding a new credit card or assigning a new primary payment method
Not applicableRead Entity Metadata

This permission allows you to view optional notes and tags that have been added to various AMP resources, such as a note added to a virtual machine.

Not applicableWrite Entity MetadataThis permission allows you to add, update, and delete optional notes and tags to various AMP resource, such as adding a note to a virtual machine.


...


Expand
titleDefault permissions for the Technical role

The Technical role contains reads-only and write-only permissions, with a focus on security and infrastructure resources. 

AMP ScreenPermissionDescription

Security Dashboard (landing page)

Read Dashboard StatisticsThis permissions allows you to view the widgets (and corresponding data) that populate the security dashboard. These widgets display a high-level status of your virtual machines, agents, and open security incidents.
Malware ProtectionRead AVAMThis permissions allows you to view antivirus and anti-malware (malware protection) details for each virtual machine.
FIMRead FIMThis permissions allows you to view file integrity details for each virtual machine.
PatchingRead OS PackagesThis permissions allows you to view details OS patching details for each virtual machine.
Log ManagementRead LogManagement

This permissions allows you to view high-level information for log collection for each virtual machine, such as:

  • Date logs were last received
  • Average size of collected logs
  • Log Status
Log ManagementRead LogSearchThis permission allows you to view details for log collection, such as the specific log message, for each virtual machine.
Log Management

Write LogManagement

This permission allows you to update the log management service, specifically the permission to upgrade the log retention plan.
FirewallRead FirewallThis permissions allows you to view details for firewall rules for each virtual machine.
FirewallWrite FirewallThis permissions allows you to add, update, or delete firewall rules.
MarketplaceRead Product Catalog

This permission allows you to view available add-on products.

You must have this permission enabled in your account in order to view purchased services and also to order new services in AMP.

Marketplace (and My Products)View SubscriptionsThis permission allows you to view subscription-based add-on products in the My Products screen of the User Details screen.
Marketplace (and My Products)Write Subscriptions

This permission allows you to view the Armor Marketplace, as well as add and cancel subscription-based add-on products.

Specifically, you can add the subscription in the Armor Marketplace, and then cancel the subscription in the My Products screen of the User Details screen.

WorkloadsRead Workload(s)

This permission allows you to view high-level data for workloads, such as

  • the associated data center
  • the number of tiers within the workload
  • the number of virtual machines within the workload
WorkloadsWrite WorkloadThis permission allows you to create, update, and remove workloads and tiers.
Virtual MachinesRead Virtual Machine StatsThis permission allows you to view usage data for a virtual data. This data is displayed in a line graph.
Virtual MachinesRead Virtual Machine(s)

This permission allows you to view data for a virtual machine, such as

  • Operating system
  • Size
  • Corresponding workload
  • Status
Virtual MachinesScale Virtual MachineThis permission allows you upgrade or downgrade (resize) the size of a virtual machine.
Virtual MachinesWrite Virtual MachineThis permission allows you to create, update, and remove virtual machines.
Virtual MachinesRead Server Replication

This permission allows you to view high-level data for the server replication (disaster recovery) add-on product. Specifically, this permission allows you to view:

  • The status of the add-on product (configuring, enabled, disabled)
  • The location of the primary data center
  • The location of the failover data center
  • The status of the replication
Virtual MachinesWrite Server ReplicationThis permission allows you to order and cancel the server replication add-on product.
Virtual MachinesRead TasksThis permission allows you to view pending tasks, such as a scheduled delete or downsize of a virtual machine.
Virtual MachinesWrite TasksThis permission allows you to schedule a delete or downsize of a virtual machine.
Virtual MachinesRead StorageThis permission allows you to view disk and storage information for a virtual machine.
IP AddressesRead Network IPThis permission allows you to view data for unassigned and assigned public and private IP addresses
IP AddressesWrite Network IP

This permission allows you to update an IP address, such as:

  • Assign an IP addresses
  • Unassign an IP addresses
  • Delete IP address
  • Request a new public IP address
IP AddressesRead Network NATThis permission allows you to view DNAT assignments.
IP AddressesWrite Network NATThis permission allows you to add and remove DNAT assignments.
L2L VPNRead Network L2LThis permission allows you to view high-level data for your L2L network tunnels. 
L2L VPNWrite Network L2LThis permission allows you to add, update, and remove L2L tunnels.
SSL/VPNRead SSL VPN Devices and UsersThis permission allows you to view the status of your users' SSL VPN client.
SSL/VPNWrite SSL VPN Devices and UserThis permission allows you to enable your users the ability to download and install the SSL VPN client.
ComplianceRead ComplianceThis permission allows you to view information for the vulnerability scanning add-on product information. Specifically, you will see the status of the add-on product.
ComplianceWrite ComplianceThis permission allows you to upgrade, downgrade, or delete the vulnerability scanning add-on product.
Tickets + NotificationRead Ticket(s)This permission allows you to view previous and current support tickets.
Tickets + NotificationWrite Ticket(s)This permission allows you to create and follow a support ticket.
Overview (Account screen)Read Identity

This permission allows you to view the account-level information, such as

  • Account overview
  • Armor contacts
  • User profiles
  • Roles and permissions
User DetailUpdate Personal Identity

This permission allows you to update your personal account information, such as your:

  • Password
  • Challenge Phrase
  • Challenge Response
User DetailRead Notification(s)This permission allows you to view the notification preferences for your users, such as a user's preference to receive an email regarding technical updates.
Not applicableRead Entity MetadataThis permission allows you to view optional notes and tags that have been added to various AMP resources, such as a note added to a virtual machine.
Not applicableWrite Entity MetadataThis permission allows you to add, update, and delete optional notes and tags to various AMP resource, such as adding a note to a virtual machine.


...

Anchor
Create a role and add permissions
Create a role and add permissions
Create a role and add permissions

...

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Account
  2. Click Roles + Permissions
  3. In the search bar, enter the name of the newly created user, and then hit Enter. The table shows a list of roles associated with that user. 
  4. Locate and select the desired role. 
  5. Under the name of the role, click Members
  6. Click Edit Members
  7. Select and drag the desired user to the Chosen column. 
  8. Click the X at the top, right corner. 

...

Anchor
Review available permissions
Review available permissions
Review available permissions by screen 

Review You can add the following table to understand the permissions available for you to add to your Roles

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

...

Armor Complete - Secure Hosting

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Billing / Accounting

Technical

...

View account notifications

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

hiddentrue

61 in total

...

View account resources.

...

View disk and storage information for the account.

...

hiddentrue

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

...

Armor Complete - Secure Hosting

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Billing / Accounting

Technical

...

View account notifications

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

...

Armor Complete - Secure Hosting

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Billing / Accounting

Technical

...

View account notifications

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

Billing / Accounting

Technical

...

Armor Complete - Secure Hosting

Armor Anywhere - Security

...

to newly created roles.

Security screen permissions

ScreenPermissionDescription

Security Dashboard (AMP landing page)

Read Dashboard StatisticsThis permissions allows you to view the widgets (and corresponding data) that populate the security dashboard. These widgets display a high-level status of your virtual machines, agents, and open security incidents.

Malware Protection

Read AVAMThis permissions allows you to view antivirus and anti-malware (malware protection) details for each virtual machine.

FIM

Read FIMThis permissions allows you to view file integrity details for each virtual machine.

Patching

Read OS PackagesThis permissions allows you to view details OS patching details for each virtual machine.

Log Management

Read LogManagement

This permissions allows you to view high-level information for log collection for each virtual machine, such as:

  • Date logs were last received
  • Average size of collected logs
  • Log Status

Log Management

Write LogManagement

This permission allows you to update the log management service, specifically the permission to upgrade the log retention plan.
Log ManagementRead LogSearchThis permission allows you to view details for log collection, such as the specific log message, for each virtual machine.

Firewall

Read Firewall

This permissions allows you to view details for firewall rules for each virtual machine.

Firewall

Write Firewall

This permissions allows you to add, update, or delete firewall rules.

...

Marketplace screen permissions

ScreenPermissionDescription

Marketplace

Read Product Catalog

This permission allows you to view available add-on products.

You must have this permission enabled in your account in order to view purchased services and also to order new services in AMP.

Marketplace and My ProductsView SubscriptionsThis permission allows you to view subscription-based add-on products in the My Products screen of the User Details screen.
Marketplace (and My Products)Write Subscriptions

This permission allows you to view the Armor Marketplace, as well as add and cancel subscription-based add-on products.

Specifically, you can add the subscription in the Armor Marketplace, and then cancel the subscription in the My Products screen of the User Details screen.

...

Infrastructure screen permissions

ScreenPermissionDescription

Workloads

Read Workload(s)

This permission allows you to view high-level data for workloads, such as

  • the associated data center
  • the number of tiers within the workload
  • the number of virtual machines within the workload
WorkloadsWrite WorkloadThis permission allows you to create, update, and remove workloads and tiers.

Virtual machines / VM Details

Read Virtual Machine Stats

This permission allows you to view usage data for a virtual data. This data is displayed in a line graph.

Virtual Machines / VM Detail

Read Virtual Machine(s)

This permission allows you to view data for a virtual machine, such as

  • Operating system
  • Size
  • Corresponding workload
  • Status
Virtual Machines / VM DetailWrite Virtual MachineThis permission allows you to create, update, and remove virtual machines.

Virtual Machines / VM Detail

Scale Virtual MachineThis permission allows you upgrade or downgrade (resize) the size of a virtual machine.

Virtual Machines / VM Detail

Read Server Replication

This permission allows you to view high-level data for the server replication (disaster recovery) add-on product. Specifically, this permission allows you to view:

  • The status of the add-on product (configuring, enabled, disabled)
  • The location of the primary data center
  • The location of the failover data center
  • The status of the replication

Virtual Machines / VM Detail

Write Server ReplicationThis permission allows you to order and cancel the server replication add-on product.

Virtual Machines / VM Detail

Read Tasks

This permission allows you to view pending tasks, such as a scheduled delete or downsize of a virtual machine.

Virtual Machines / VM Detail

Write TasksThis permission allows you to schedule a delete or downsize of a virtual machine.

Virtual Machines / VM Detail

Read StorageThis permission allows you to view disk and storage information for a virtual machine.

IP Addresses

Read Network IP

This permission allows you to view data for unassigned and assigned public and private IP addresses

IP AddressesWrite Network IP

This permission allows you to update an IP address, such as:

  • Assign an IP addresses
  • Unassign an IP addresses
  • Delete IP address
  • Request a new public IP address
IP AddressesRead Network NATThis permission allows you to view DNAT assignments.
IP AddressesWrite Network NATThis permission allows you to add and remove DNAT assignments.

L2L VPN

Read Network L2L

This permission allows you to view high-level data for your L2L network tunnels.

L2L VPNWrite Network L2LThis permission allows you to add, update, and remove L2L tunnels.

SSL/VPN

Read SSL VPN Devices and Users

This permission allows you to view the status of your users' SSL VPN client.

SSL/VPNWrite SSL VPN Devices and UserThis permission allows you to enable your users the ability to download and install the SSL VPN client.

...

Compliance screen permissions

ScreenPermissionDescription

Compliance

Read Compliance

This permission allows you to view information for the vulnerability scanning add-on product information. Specifically, you will see the status of the add-on product.

ComplianceWrite ComplianceThis permission allows you to upgrade, downgrade, or delete the vulnerability scanning add-on product.

...

Support screen permissions

ScreenPermissionDescription

Tickets + Notification


Read Ticket(s)

This permission allows you to view previous and current support tickets.

Tickets + NotificationWrite Ticket(s)This permission allows you to create and follow a support ticket.

...

Account screen permissions

ScreenPermissionDescription
Overview (Account screen)

Read Identity

This permission allows you to view the account-level information, such as

  • Account overview
  • Armor contacts
  • User profiles
  • Roles and permissions
Overview (Account screen)Write Identity

This permissions allows you to update account-level information, such as:

  • Invite and remove users
  • Create, update, and remove roles
  • Assign and unassign roles to users
  • Unlock a user after several failed login attempts
Overview (Account screen)Write AccountThis permission allows you to update your company profile, such as the address.
Cloud ConnectionsRead Cloud ConnectionsThis permission allows you to view public cloud accounts that have been synced with AMP.
Cloud ConnectionsWrite Cloud ConnectionsThis permission allows you to add a new public cloud account to sync with AMP.
User Detail

Update Customer Passwords

This permission allows you to update another user's password.

User DetailUpdate Personal Identity

This permission allows you to update your personal account information, such as your:

  • Password
  • Challenge Phrase
  • Challenge Response
User DetailRead Notification(s)

This permission allows you to view the notification preferences for your users, such as a user's preference to receive an email regarding technical updates.

Invoices

View InvoicesThis permission allows you to view current and previous invoices.

Payment Methods

Read Payment Information

This permission allows you to view current payment information, such as the primary payment method.

Payment Methods

Update Payment InformationThis permission allows you to update the payment information, such as adding a new credit card or assigning a new primary payment method
Not applicableRead Entity Metadata

This permission allows you to view optional notes and tags that have been added to various AMP resources, such as a note added to a virtual machine.

Not applicableWrite Entity MetadataThis permission allows you to add, update, and delete optional notes and tags to various AMP resource, such as adding a note to a virtual machine.