Claims
This section contains a list of privileges that can be included in roles.
| ID | Name |
|---|---|
| Users management | |
| User.Create | Create new users |
| User.Read | Read users |
| User.Update | Update users |
| User.Delete | Delete users |
| User.Reset2FA | Reset 2FA for user |
| User.SetPolicy | Set policy for user |
| User.ManageSshAuthorizedKeys | Manage SSH authorized keys |
| User.PasswordManagement | Manage password for internal user |
| User.ManageX509Certificate | Manage X.509 certificate Subject for users |
| User groups management | |
| UsersGroup.Create | Create user groups |
| UsersGroup.Delete | Delete user groups |
| UsersGroup.Read | Read user groups |
| UsersGroup.Update | Update user groups |
| UsersGroup.SetPolicy | Set policy for user groups |
| Permissions management | |
| Permission.Create | Create permissions |
| Permission.Read | Read permissions |
| Permission.Revoke | Revoke permissions |
| Permission.Suspend | Suspend and reactivate permissions |
| Accounts management | |
| Account.Create | Create accounts |
| Account.Read | Read accounts |
| Account.Update | Update accounts |
| Account.Restore | Restore credentials of accounts to previously used ones |
| Account.Delete | Delete accounts |
| Account.Block | Block accounts |
| Account.Manage | Make accounts managed |
| Account.Ignore | Ignore accounts |
| Account.SetPolicy | Set policy for account |
| Account.Credentials.Check | Check account credentials |
| Account.Credentials.Update | Update account credentials |
| Resources management | |
| Resource.Create | Create resources |
| Resource.Read | Read resources |
| Resource.Update | Update resources |
| Resource.Restore | Restore deleted resources |
| Resource.Delete | Delete resources |
| Resource.Block | Block resources |
| Resource.CheckConnection | Check connection to resource |
| Resource.Sync | Synchronize resources |
| Resource.SetPolicy | Set policy for resource |
| Resource.SetOrganizationalUnit | Set organizational unit for resource |
| Resource.TagManagement | Resource tags management |
| Resource groups management | |
| ResourcesGroup.Create | Create resource groups |
| ResourcesGroup.Read | Read resource groups |
| ResourcesGroup.Update | Update resource groups |
| ResourcesGroup.Delete | Delete resource groups |
| ResourcesGroup.SetOrganizationalUnit | Set organizational unit for resource group |
| Domains management | |
| Domain.Create | Create domains |
| Domain.Read | Read domains |
| Domain.Update | Update domains |
| Domain.Restore | Restore deleted domains |
| Domain.Delete | Delete domains |
| Domain.CheckConnection | Check connection to domain |
| Domain.AccountsSync | Synchronize domain accounts |
| Domain.ResourcesImport | Import resources from domain |
| Domain.SetPolicy | Set policy for domain |
| Domain.PrivilegedGroups.Create | Create privileged groups on domain |
| Domain.PrivilegedGroups.Read | Read privileged groups on domain |
| Domain.PrivilegedGroups.Delete | Delete privileged groups on domain |
| Domain.ResourceContainer.Create | Create resource containers on domain |
| Domain.ResourceContainer.Read | Read resource containers on domain |
| Domain.ResourceContainer.Delete | Delete resource containers on domain |
| Sessions management | |
| Session.Read | Read sessions |
| Session.Abort | Abort sessions |
| Session requests management | |
| SessionRequest.Read | Read session requests |
| SessionRequest.Confirm | Confirm sessions |
| Credentials viewing requests management | |
| CredentialsViewingRequest.Read | Read credentials viewing requests |
| CredentialsViewingRequest.Confirm | Confirm account credentials viewing requests |
| Event Log | |
| Event.Read | Read events |
| Policies management | |
| Policy.Create | Create policies |
| Policy.Read | Read policies |
| Policy.Update | Update policies |
| Policy.Delete | Delete policies |
| System settings management | |
| SystemSettings.Read | Read system settings |
| SystemSettings.Update | Update system settings |
| Licenses management | |
| License.Create | Add licenses |
| License.Read | Read licenses |
| License.Delete | Delete licenses |
| SSH templates management | |
| SshTemplate.Create | Import SSH templates |
| SshTemplate.Read | Read SSH templates |
| SshTemplate.Delete | Delete SSH templates |
| User connection types management | |
| UserConnectionType.Create | Create user connection types |
| UserConnectionType.Read | Read user connection types |
| UserConnectionType.Update | Update user connection types |
| UserConnectionType.Delete | Delete user connection types |
| Roles management | |
| Role.Create | Create roles |
| Role.Read | Read roles |
| Role.Update | Update roles |
| Role.Delete | Delete roles |
| Role.Members | Manage role membership of users |
| Role.Claims | Manage role claims |
| Subscription groups management | |
| SubscriptionGroup.Create | Create subscription groups |
| SubscriptionGroup.Read | Read subscription groups |
| SubscriptionGroup.Update | Update subscription groups |
| SubscriptionGroup.Delete | Delete subscription groups |
| Notifications management | |
| EventSubscription.Create | Create notifications |
| EventSubscription.Read | Read notifications |
| EventSubscription.Delete | Delete notifications |
| Applications management | |
| Application.Create | Create new application |
| Application.Read | Read applications |
| Application.Update | Update applications |
| Application.Delete | Delete application |
| Organizational units management | |
| OrganizationalUnit.Create | Create organizational units |
| OrganizationalUnit.Read | Read organizational units |
| OrganizationalUnit.Update | Update organizational units |
| OrganizationalUnit.Delete | Delete organizational units |
| Network locations management | |
| NetworkLocation.Create | Create network locations |
| NetworkLocation.Update | Update network locations |
| NetworkLocation.Delete | Delete network locations |
| Tags management | |
| Tag.Create | Create tags |
| Tag.Update | Update tags |
| Tag.Delete | Delete tags |
| Dashboard page | |
| Dashboard.Edit | Update page configuration |
| Dashboard.View | View page |
| Service connection types management | |
| ServiceConnectionType.Create | Create service connection types |
| ServiceConnectionType.Read | Read service connection types |
| ServiceConnectionType.Update | Update service connection types |
| ServiceConnectionType.Delete | Delete service connection types |