Difference between revisions of "Granular Control of Slient Inspection"
| Line 19: | Line 19: | ||
===Assigning users to Silent Inspection Role=== | ===Assigning users to Silent Inspection Role=== | ||
| + | After creating the admin role, It Admins will need to assign users to the admin role as well as which OUs the user should have permissions over. | ||
| + | The steps below will need to be completed for the same user multiple times if the user is will have permission over multiple OUs | ||
#Click '''Assign Users''' | #Click '''Assign Users''' | ||
#Under '''user''', enter the name of the user you want to give Silent Inspection privileges to and select the user in the list. | #Under '''user''', enter the name of the user you want to give Silent Inspection privileges to and select the user in the list. | ||
#Under '''Org Unit''', select which Org unit the user in the previous steps should be allowed to silently inspect | #Under '''Org Unit''', select which Org unit the user in the previous steps should be allowed to silently inspect | ||
#Click Submit | #Click Submit | ||
Latest revision as of 02:29, 24 February 2026
Contents
Silent Inspection
Silent Inspection is a feature that allows an administrator full control of a user's account. To learn more about Silent Inspection click here
Privileged Identity Management
Privileged Identity Management provides control over what information can be viewed and accessed by certain users. Privileged Identity Management minimises the number of people who have access to secure information and resouces which reduces the chance of malicious access or unauthorised users inadvertantly impacting something they don't know how to use. To learn more about Privileged Identity Management and Admin Roles click here
Granular Control of Silent Inspection
By making use of Privileged Identity Management for Silent Inspection, IT admins can allow specific people to only be able to use Silent Inspection for specific OUs. Applying a more Granular Control over Silent Inspection can help prevent privilege escalations.
Creating a specific role for Silent Inspection
Creating a role that specifically only handles Silent Inspection Permissions is to allow more granular control over what permissions can be added and removed from users while not affecting other admin roles and permmissions.
- In the Cloudwork Dashboard>Admin Roles>Add New Role
- Under Name provide meaningful name like Silent Inspection Role
- Select the following checkboxes under User Permissions
- View Users
- Can use Silent Inspection
- Click Submit
Assigning users to Silent Inspection Role
After creating the admin role, It Admins will need to assign users to the admin role as well as which OUs the user should have permissions over. The steps below will need to be completed for the same user multiple times if the user is will have permission over multiple OUs
- Click Assign Users
- Under user, enter the name of the user you want to give Silent Inspection privileges to and select the user in the list.
- Under Org Unit, select which Org unit the user in the previous steps should be allowed to silently inspect
- Click Submit
