Create a Custom Role with Limited Access
To delegate some of the IT security management tasks to a help desk member within your company without assigning the IT Security Manager role, create a custom role with specific privileges.
These privileges are exclusively meant for controlling user management access. You can assign these privileges directly to a custom role.
Users without the IT Security Manager role who are assigned custom roles with these privileges have limited access to the Security Console. These users can only lock or unlock other users, reset their password, or view user details. They can't create users or edit user details.
The following table lists the privileges and the associated access controls. It also includes details of pages where the user does the task:
Privilege Name and Code | Access Control Details | Page Where You Do this Task |
---|---|---|
Lock and Unlock User Account (ASE_LOCK_UNLOCK_USER_PRIV) | Lock or unlock a user account | User Accounts |
Update Password for User Account (ASE_UPDATE_PASSWORD_FOR_USER_PRIV) | Reset the password for a user account | User Accounts and User Account Details |
View User Account (ASE_VIEW_USER_ACCOUNT_PRIV) | View the details of a user account | User Account Details |