The Users section in OneView allows Global Administrators to manage user accounts. In the left navigation pane, click Configure > Users. In this section, you can add, edit, and delete users and assign sites to a user. This article explains the available user roles and their permissions:
- Global Administrator: Unrestricted access to OneView.
- Site Administrator: View and edit access to any sites they are assigned to.
- Customer Administrator: View and minimal edit access to any sites they are assigned to.
- Viewer: View access to any sites they are assigned to.
Created users are granted Full, Limited, or View Only permissions. User roles and their effective permissions are detailed in the following table. Reference this information when creating a user or editing an existing user.
User permissions
| Console Section | Global Administrator | Site Administrator* | Customer Administrator* | Viewer* |
|---|---|---|---|---|
| Dashboard | Full | Full | Limited | Limited |
| Managed Services | Full | Full | -- | -- |
| Active Detections | Full | Full | Full | View-only |
| Quarantined Detections | Full | Full | Full | View-only |
| Detection Log | Full | Full | Full | View-only |
| Brute Force Protection | Full | Full | Full | View-only |
| DNS Filtering | Full | Full | Full | View-only |
| Device Control | Full | Full | Full | View-only |
| Vulnerabilities | Full | Full | Full | View-only |
| Application Block | Full | Full | Full | View-only |
| Software Inventory | Full | Full | Full | View-only |
| Endpoints | Full | Full | Full | View-only |
| Sites | Full | Full | Limited | View-only |
| Patch Management | Full | Full | Full | View-only |
| Firewall Management | Full | Full | -- | -- |
| Email Security | Full | Full | Full | View-only |
| Suspicious Activity | Full | Full | Full | View-only |
| Active Response Shell | Full | -- | -- | -- |
| Flight Recorder | Full | Full | Full | Full |
| Sandbox Analysis | Full | Full | Full | Full |
| Identity Threat Detection & Response | Full | Full | -- | -- |
| Tasks | Full | Full | Full | View-only |
| Activity Logs | Full | Full | Full | View-only |
| Exclusions | Full | Limited | Limited | View-only |
| Policies | Full | Limited | Limited | -- |
| Groups | Full | Full | Full | View-only |
| Notifications | Full | Full | Full | Full |
| Reports | Full | Full | Full | Full |
| Schedules | Full | Full | Full | View-only |
| Single Sign-On | Full | -- | -- | -- |
| Users | Full | -- | -- | -- |
| Syslog Logging | Full | Full | Full | View-only |
| Integrate | Full | Full | Limited | -- |
| Support | Full | Limited | -- | -- |
| Downloads Center | Full | Full | Full | -- |
| View Tutorials | Full | Full | Full | Full |
| Send Feedback | Full | Full | Full | Full |
| Profile Settings | Full | Full | Full | Full |
| Monthly Usage | Full | Full | Full | Full |
| Add-ons | Full | -- | -- | -- |
| Invoices | Full | -- | -- | -- |
| Billing | Full | -- | -- | -- |
| What's New | Full | Full | Full | Full |
| Contact Us | Full | Full | -- | Full |
| Help bot | Full | Full | Full | Full |
- * Applies to user-assigned Sites.
- -- User has no permissions.
User role access for Active Response Shell
A OneView Global Administrator must enable Active Response Shell to provide access to another Global Administrator.