Document toolboxDocument toolbox

Role Based Access Control (RBAC)

Devo SOAR supports Role Based Access Control (RBAC) to restrict network access based on a person's role and has become one of the main methods for advanced access control. The roles in RBAC refer to the levels of access that employees have to the network.

A role definition is a collection of permissions. It's typically just called a role. A role definition lists the actions that can be performed, such as read, write, and delete. Roles can be high-level, like an owner, or specific, like a virtual machine reader.

In Devo SOAR, persons are defined as Users and roles as Groups.

To manage Users and Groups, you must already be assigned to a group that has User Management permissions.

With RBAC, you do not assign permissions directly to Users. Instead, you assign permissions to Groups, and then assign Groups to Users.

Can assign multiple Groups to specific Users.

Specifically, when you create a Group you assign it a set of permissions. A Permission is the right to perform a particular function in Devo SOAR.

Supported Entities

The following entities are supported for RBAC:

  • Playbook

  • Command

  • Connection

  • Integration Connection

  • Event Type

  • Stream

  • Baseline

  • Custom List

  • Dashboard

  • Case Management

  • User Management

  • User Form

  • Destination