Jump Item Roles: Create Permission Sets for Jump Items
Jump Item Roles
Jump Item Roles
A Jump Item Role is a predefined set of permissions regarding Jump Item management and usage. Jump Item Roles are applied to users either from the Jump > Jump Groups page or from the Users & Security > Group Policies page.
If more than one role is assigned to a user, then the most specific role for a user is always used. The order of specificity for Jump Item Roles, from most specific to least specific, is:
- The role assigned to the relationship between a user and a Jump Group on the Jump > Jump Groups page.
- The role assigned to the relationship between a user and a Jump Group on the Users & Security > Group Policies page.
- The Jump Item Roles configured for a user on the Users & Security > Users page or the Users & Security > Group Policies page.
A new Jump Item Role called Auditor is automatically created on new site installations. On existing installations it has to be created. This role only has a single View Reports permission enabled, giving admins the option to grant a user just the permission to run Jump Item reports, without the need to grant any other permission.
Add New Jump Item Role, Edit, Delete
Create a new role, modify an existing role, or remove an existing role.
Add or Edit a Jump Item Role
Create a unique name to help identify this role. This name helps when linking a Jump Item Role with a user or group of users in a Jump Group.
Add a brief description to summarize the purpose of this role.
Jump Group or Personal Jump Items
Create and deploy new Jump Items
Enables the user to create Jump Items and install them on remote systems.
Move and Copy Jump Items
Enables the user to move or copy Jump Items from one Jump Group into another. This permission must be enabled on both Jump Groups. Copied Jump Items can be edited.
For more information on how to copy Jump Items, please see Jump Interface: Use Jump Items to Access Remote Systems.
Remove existing Jump Items
Enables the user to delete Jump Items.
Enables the user to view reports. This applies to the Jump Group to which the user is added with this role.
Enables the user to Jump to remote systems.
Enables the user to edit a Jump Item's tag field.
Enables the user to edit a Jump Item's comments field.
Edit Jump Policy
Enables the user to set which if any Jump Policy is applied to a Jump Item.
Edit Session Policy
Enables the user to set which if any session policy a Jump Item should use. Changing the session policy may affect the permissions allowed in the session.
Edit Connectivity and Authentication
Enables the user to modify a Jump Item's connection and authentication information. This includes such fields as hostname, Jumpoint, port, and username, among others.
Edit Behavior and Experience
Enables the user to modify the behavior of Jump Items. This includes such fields as connection type, display size, and terminal type, among others.
For more information, please see Use Jump Item Roles to Configure Permission Sets for Jump Items.