As well as allowing fine grained control over user access to (protected) hosts, the Appgate SDP system also allows similar fine grained control over the rights to use the Admin UI. Configure multiple new Roles for setting up delegated administration rights. Create a Role for a specific type of privilege (such as View) in specific areas of the Admin UI (such as Audit Logs). Admin Roles are assigned to users using Policies.
Before you start
Information you will need
System administration privileges: confirm the admin privileges that are to be delegated and related targets (refer to System Administrators
Tags: confirm tags to be used to restrict the scope of admin privileges
Background reading
Creating local accounts: refer to Manage Local User Accounts
Delegating administration: refer to System Administrators
System security best practice: refer to Admin Roles & Rights
Use the Admin Roles form for:
Configuring privileges for administrators to allow delegated administration
This can be especially important in 'managed service' environments where customers may require some but not all privileges on some but not all (tagged) targets.
Configuring privileges for an API user
NOTE
MFA for Admins is configured in MFA for Admins.
For details on completing the form, refer to configure admin roles.