Default administrator roles in the cloud console
The cloud console includes multiple default administrator roles, each of which provides a unique set of privileges. The default roles cannot be edited or deleted, but custom roles can be created if needed.
The cloud console includes the following default roles:
Super Administrator | Create, edit, and delete all resources in all domains. Super Administrators are only visible in the domain that you created them in. |
Domain Administrator | Create, edit, and delete all resources in a single domain. |
Limited Administrator | Create and edit all resources in a single domain. |
Viewer | Read-only access to all resources in a single domain. |
Among other privileges, a Super Administrator can:
- Request product trials*
- Create other administrator accounts
- Change administrator roles
- Create, rename or delete a domain
- Create custom roles
- View and manage multiple domains
*Domain and Limited Administrator roles can request trials only when they were explicitly given access to the Testpad domain.
Default role privileges
Area | Privileges | Task | Super Administrator | Domain Administrator | Limited Administrator | Viewer |
---|---|---|---|---|---|---|
Devices | Group Management | Create and edit | √ | √ | √ | |
Delete | √ | √ | ||||
Commands | Run LiveUpdate | √ | √ | |||
Quick Scan and Full Scan | √ | √ | ||||
Quarantine/ Unquarantine | √ | √ | ||||
Reboot | √ | √ | ||||
Lock and rollback engine | √ | √ | ||||
Alerts & events | Alerts and Event rules management | View | √ | √ | √ | √ |
Policy Management | Policy Management | Create and edit | √ | √ | √ | |
Delete | √ | √ | ||||
View | √ | √ | √ | √ | ||
Policy Targeting | Target on Asset groups | √ | √ | √ | ||
Policy Group Management | Create and edit | √ | √ | √ | ||
Delete | √ | √ | ||||
Policy management | Symantec Endpoint Protection Manager enrollment | Enroll new sites | √ | √ | √ |