You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

When you first log into the Armor user interface, the Administrative role is created. You can create different roles with different permissions for yourself and for your users. 


Specific permissionDescriptionAPI route
Read Orders

View account resources.

  • GET orders/vm/options/software
  • GET software
  • GET usage
Write OrdersAdd additional account resources.
  • POST orders/submit/vm
Read Endpoint(s) 
  • GET security-endpoints
  • GET security-endpoints/{id}
  • GET security-endpoints/{id}/history
  • POST security-endpoints-search
  • POST security-endpoints/actions/ping

Write Endpoint(s) 
  • PATCH security-endpoints/{id}
  • POST security-endpoints/actions/register
Read Subscriber Key(s) 
  • GET security-subscriber-keys
Write Subscriber Key(s) 
  • DELETE security-subscriber-keys/{id}
  • POST security-subscriber-keys
  • POST security-subscriber-keys/{id}/actions/restore
Read Subscriber(s) 
  • GET security-subscribers
  • GET security-subscribers/{accountNumber}
  • GET security-subscribers/{subscriberId}
  • GET security-subscribers/{subscriberId}/keys
Write Subscriber(s) 
  • POST security-subscribers
  • POST security-subscribers/{subscriberId}/actions/deactivate
  • POST security-subscribers/{subscriberId}/actions/reactivate
Read IdentityView account information.
  • GET account/contacts
  • GET accounts
  • GET accounts/{accountId}
  • GET roles
  • GET roles/{id}
  • GET users
  • GET users/{id}
  • GET usersecurity/challengephrase
  • GET usersecurity/securityquestions
Write IdentityUpdate account information.
  • DELETE roles/{id}
  • DELETE roles/{id}/members/{userId}
  • POST reset/initiate
  • POST roles
  • POST roles/{id}
  • POST roles/{id}/members/{userId}
  • POST users
  • POST users/{id}/status/{isEnabled}
  • POST users/{userId}/invite
  • POST users/invitation/{key}
  • POST users/notifications
  • POST users/resetpassword
  • POST usersecurity/securityinformation/{referencekey}
  • PUT users/{id}
  • PUT usersecurity/challengephrase
  • PUT usersecurity/securityquestionanswer







Permission typeSpecific permissionDescriptionAPI route
AdministrativeRead Network BandwidthView network transfer historyGET /bandwidth
 Read IdentityView account information

GET /accounts

GET /accounts/{accountld}

GET /roles

GET /roles/{id}

GET /users

GET /users/{id}

GET /usersecurity/challengephrase

GET /usersecurity/securityquestions

 Write WorkloadCreate, update, and remove account workloads

POST /apps

PUT /apps/{id}

DELETE /apps/{id}

POST /apps/{id}/power/{powerAction}

POST /apps/{appsId}/tiers

PUT /apps/{appId}/tiers/{tierID}

DELETE /apps/{appId}/tiers/{tierId}

 Read AVAMView antivirus and antimalware details

GET /core/avam

GET /core/avam/statistics

GET /core/avam/statistics/{securityDataType}

 Read Dashboard StatisticsView main security dashboard

GET /core/dashboard/statistics

GET /core/security-dashboard/stats/overview

GET /core/security-dashboard/stats/overall

GET /core/security-dashboard/{fromdate}/{todate}

 Read FIMView file integrity details

GET /core/fim

GET /core/fim/statistics

GET /core/fim/statistics/{securityDataType}

 Read Connections 

GET /connections

GET /connections/summary

 Write Connections 

POST /connections

DELETE /connects/{id}

 Writer Connectors POST /connectors
 View Core LicenseView Core license informationGET /core/license
 Read FirewallView account firewall rules

GET /firewall/{deviceId}/groups

GET /firewall/{deviceId}/groups/{Id}

GET /firewall/{deviceId}/rules

GET /firewalls

GET /firewall/{deviceId}/services

GET /firewall/{deviceId}/services/{serviceGroupId}

 Write FirewallAdd and edit account firewall rules 
Permission typeSpecific permissionDescription
AdministrativeView UsersAuthorizes users to view existing users associated with the environment within the portal. 
AdministrativeAdd/Edit UsersAuthorizes users to add, remove and edit other users within the portal. 
AdministrativePassword Reset (Others)Authorizes users to issue password reset emails for other users. 
AdministrativeCancel AccountAuthorizes users to cancel the account with Armor. 
AdministrativeChange OwnershipAuthorizes users to change ownership of the account with Armor.
AdministrativeAuthorized SignatoryAuthorizes a user the ability to accept the terms and conditions for the environment. Modifications to the environment cannot be made until the terms and conditions are approved by an authorized signatory.
TechnicalView/troubleshoot ServicesAuthorizes users to view tickets and troubleshoot services within the environment. 
TechnicalRestart ServicesAuthorizes users to restart services, which includes secure cloud servers and appliances. 
TechnicalScale Servers & Load BalancersAuthorizes users to scale secure cloud servers and appliances through the portal. This grants the ability to affect invoicing only as it relates to scaled resources on secure cloud servers or appliances. 
TechnicalAccess Global Security ViewAuthorizes users to view the global security dashboard in the portal. 
TechnicalOpen/Close PortsAuthorizes users to open and close firewall ports on the environment and gives users access to the port opening request form found under the security tab in the portal. 
TechnicalNew Relic Account AccessAuthorizes users the ability to access the New Relic application monitoring account associated with the environment.
BillingAdd or Remove Billable ItemsAuthorizes users to add, delete or modify billable services for the environment which have an impact on your invoice.
BillingEdit Company InformationAuthorizes users to edit the company information fields which can be found by clicking the account tab within the portal. 
BillingView/Edit Payment InformationAuthorizes users to add and remove payment methods from the payment methods sub-tab within the account section of the portal.
NotificationReceive account notifications  
NotificationReceive technical notifications  
NotificationReceive billing notifications