Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

PermissionCategoryDescription
manage-authentication-providersGeneral/Access ControlManage Authentication Providersauthentication providers
manage-clientsGeneral/Access ControlManage Clientsclients and their settings
manage-rolesGeneral/Access ControlManage Rolescustom roles 
manage-system-settingsGeneral/Access ControlManage System Settingsgeneral system settings
manage-usersGeneral/Access ControlManage Users

save-sast-scan​

Projects & Scans​          

  • Run new CxSAST scan
  • Create scan subset
  • Save results from CxAudit

delete-sast-scan​

Projects & Scans​

  • Delete CxSAST scan
  • Lock/unlock scan

save-project​

Projects & Scans​

  • Create new project
  • Update project
  • Branch project
  • Duplicate project
  • Save local project from CxAudit

delete-project​

Projects & Scans​

Delete project

view-failed-sast-scan​

Projects & Scans​

View faild scans 

save-osa-scan​

Projects & Scans​

Run CxOSA scan
download-scan-log                       Projects & Scans​Download scan log 

manage-result-state-and-assignee​

Scan Results​

  • Change result state (excluding NE)
  • Assign user

manage-result-comment​

Scan Results​

Add new result comment

manage-result-exploitability​

Scan Results​

Set result state to NE (all other states will be available as well) 

manage-result-severity​

Scan Results​

Change result severity

open-issue-tracking-tickets​

Scan Results​

Create ticket for result

manage-data-analysis-templates​

Reports​

create and delete templates 

generate-scan-report​

ReportsGenerate scan reports
export-scan-resultsReportsExport to CSV from the results viewer

manage-custom-description​

Vulnerability Queries​

Manage custom query descriptions (create, export and import)

create-preset​

Vulnerability Queries​

Create a new preset, save it, update it, delete it
manage-queriesVulnerability Queries​Manage QueriesCreated and manage queries customization in the CxAudit

update-and-delete-preset​

Vulnerability Queries​

Edit and delete all presets (including Cx out-of-the-box presets)
use-cxauditVulnerability Queries​

Login to CxAudit

Note: This permission is counted against the license.

manage-data-retention​

System Configuration​

Manage data retention

manage-engine-servers​

System Configuration​

Manage engine servers

manage-system-settings​

System Configuration​

  • Download application logs
  • View utilization dashboard
  • View license details
  • View installation details
  • View and edit general settings
  • View and edit CxOSA settings
  • Manage source control users
  • Export/import preset

manage-external-services-settings​

System Configuration​

Configure external service settings

manage-custom-fields​

System Configuration​

Create/update/delete custom fields 

manage-issue-tracking-systems​

System Configuration​

Manage issue-tracking system

manage-pre-post-scan-actions​

System Configuration​

Configure pre- and post-scan actions
download-system-logsSystem Configuration​

View installation details page

Download application logs

Note: only available from 9.0 HF1 

view-appsec-coach-statisticsSystem Configuration​View Appsec Coach StatisticsAbility to set the Codebashing integration

use-odata​

API​

Fetch all data via OData API (no filter per current user's team)

see-support-linkOtherView and use "Services & Support" button
view-resultsScan Results​

This permission separates the view-results ability from any other permission.

This is added to any predefined role and is available from CxSAST 9.0 HF5

manage-global-policies-settingsSecurity Risk ManagementManage Global Policies Settings
manage-policiesSecurity Risk ManagementManage Policies
manage-remediation-intelligenceSecurity Risk ManagementManage Remediation Intelligence
view-analyticsSecurity Risk ManagementView Analytics

...