RBAC: Predefined Roles, Resources, and User Groups

To expedite the RBAC configuration, AppViewX ships the following set of predefined roles, resources and user groups:
  • CLM Requester
  • CLM Level 1 Approver
  • CLM Level 2 Approver
  • CLM Auditor
On day 0 of your using the application, these, along with the superadmin role, will be available by default for you to map to your users, as well as to clone and/or modify as required.

CLM Requester

  • Role: Low-level user allowed to submit requests to enroll, renew/regenerate, revoke, push to device, roll back on the resources assigned to the user
  • Resources: CLM related visual workflows will be mapped and provided with the submit permission for the CLM actions. The default certificate group will be mapped.
  • User Group: Mapping between the CLM Requester role and the CLM Requestor resource
Note: Once a request has been submitted, ensure that the requisite approvers are duly informed.

CLM Level 1 Approver

  • Role: Level 1 approval role for all CLM actions
  • Resources: CLM related visual workflows will be mapped and provided with the approve permission for CLM actions. The default certificate group will be mapped.
  • User Group: Mapping between the CLM Level 1 Approver role and the CLM Level 1 Approver resource
Note: To check requests pending approvals, go to (Menu) > CERT+ > Automation > My Requests > Open.
Tip: You can also go to the certificate inventory and search for the common name of the certificate that needs to be approved. Click the common name to be redirected to the holistic view of the required certificate.

CLM Level 2 Approver

  • Role: Level 2 approval role for all CLM actions
  • Resources: CLM related visual workflows will be mapped and provided with the implement permission for CLM actions. The default certificate group will be mapped.
  • User Group: Mapping between the CLM Level 2 Approver role and the CLM Level 2 Approver resource
Note: To check requests pending implementation approvals, go to (Menu) > CERT+ > Automation > My Requests > Open.
Tip: You can also go to the certificate inventory and search for the common name of the certificate that needs to be approved for implementation. Click the common name to be redirected to the holistic view of the required certificate.

CLM Auditor

  • Role: Auditor role for all CLM actions
  • Resources: CLM related visual workflows will be mapped and provided with read permission for the CLM actions. The default certificate group will be mapped.
  • User Group: Mapping between the CLM Auditor role and the CLM Auditor resource.
Note: To check requests raised/approved/open for approvals, go to (Menu) > CERT+ > Automation > My Requests > All.

Accessing the Predefined RBAC Configuration

  • Go to (Menu) > Platform > Identity > Role.

    The Role page is displayed. The predefined roles are listed here.

    The subsequent sections cover the instructions for cloning and modifying roles, resources, and user groups.