The Users section in OneView allows Global Administrators to manage user accounts. In the left navigation pane, click Configure > Users. In this section, you can add, edit, and delete users and assign sites to a user. This article explains the available user roles and their permissions:
- Global Administrator: Unrestricted access to OneView.
- Site Administrator: View and edit access to any sites they are assigned to.
- Customer Administrator: View and minimal edit access to any sites they are assigned to.
- Viewer: View access to any sites they are assigned to.
Created users are granted Full, Limited, or View Only permissions. User roles and their effective permissions are detailed in the following table. Reference this information when creating a user or editing an existing user.
User permissions
Console Section | Global Administrator | Site Administrator* | Customer Administrator* | Viewer* |
Dashboard | Full | Full | Limited | Limited |
Active Detections | Full | Full | Full | View-only |
Quarantined Detections | Full | Full | Full | View-only |
Detection Log | Full | Full | Full | View-only |
Brute Force Protection | Full | Full | Full | View-only |
DNS Filtering | Full | Full | -- | -- |
Device Control | Full | Full | Full | View-only |
Vulnerabilities | Full | Full | Full | View-only |
Application Block | Full | Full | -- | -- |
Software Inventory | Full | Full | Full | View-only |
Endpoints | Full | Full | Full | View-only |
Sites | Full | Full | View-only | View-only |
Patch Management | Full | Full | Full | View-only |
Invoices | Full | -- | -- | -- |
Monthly Usage | Full | Full | Full | Full |
Add-ons | Full | -- | -- | -- |
Suspicious Activity | Full | Full | Full | View-only |
Active Response Shell | Full | Full | Full | -- |
Flight Recorder | Full | Full | Full | Full |
Sandbox Analysis | Full | Full | Full | Full |
Tasks | Full | Full | Full | View-only |
Events | Full | Full | Full | Full |
Exclusions | Full | Limited** | Limited** | View-only** |
Policies | Full | View-only** | View-only** | -- |
Groups | Full | Full | -- | -- |
Notifications | Full | Full | Full | Full |
Reports | Full | Full | -- | -- |
Schedules | Full | Full | -- | -- |
Single Sign-On | Full | -- | -- | -- |
Users | Full | -- | -- | -- |
Syslog Logging | Full | Full | Full | -- |
Integrate | Full | Full | -- | -- |
Support Cases | Full | Full | -- | -- |
Downloads | Full | Full | Full | -- |
Send Feedback | Full | Full | Full | Full |
Managed Services | Full | Full | -- | -- |
Profile Settings | Full | Full | Full | Full |
View Tutorial | Full | Full | -- | -- |
Release History | Full | Full | Full | Full |
Online Training | Full | Full | Full | Full |
What's New | Full | Full | Full | Full |
Contact Us | Full | Full | -- | Full |
Help bot | Full | Full | Full | Full |
- * Applies to user-assigned Sites.
- ** A user has site-specific access to this feature when launching the site.
- -- User has no permissions.
User role access for Active Response Shell
A OneView Global Administrator must enable Active Response Shell to provide access to another Admin.