Forum Discussion

jcescut's avatar
jcescut
Brass Contributor
Oct 10, 2020

Manage admin access

Hi, 

if I try to assign 2 Admin roles (User group admin, Cloud Discovery report admin) I receive the following:

"Error - User was already added to list".


Does this mean that a user can only have 1 admin role assigned? If this is so, it is very limiting. Especially if you have multiple teams in the organization, e.g. a team managing users from country A and another managing users from country B.

 

Kind regards,

Jan

Cloud App Security
Cloud Discovery

4 Replies

  • danbenj's avatar
    danbenj
    Former Employee
    Oct 11, 2020

    jcescut Hi Jan, currently users are restricted to a single role within MCAS.  We are planning on allowing users to create custom roles and assign multiple roles per user within the product in the near future. 

    • jcescut's avatar
      jcescut
      Brass Contributor
      Oct 11, 2020
      Great! Thanks for the quick reply! Custom roles and multiple roles is really a must for some of our customers.
      One additional question: Does the integration with the on-prem SIEM system follow the configured roles?
      To rephrase the question: Is it possible for the on-prem SIEM to receive only the notifications pertaining to a specific role? e.g. on-prem SIEM dedicated to collect events produced by devices and users located in country A, should receive only notifications from MCAS which pertain to users from country A.
      • danbenj's avatar
        danbenj
        Former Employee
        Oct 11, 2020

        jcescut SIEM token or any API token is bound to the permissions of the role of the user that generated it. 

Resources