Jump Item Roles: Configure Permission Sets for Jump Items

Jump

Jump Item Roles

Jump Item Roles

A Jump Item Role is a predefined set of permissions regarding Jump Item management and usage. Jump Item Roles are applied to users from the Jump > Jump Item Roles page or from the Users & Security > Group Policies page.

If more than one role is assigned to a user, then the most specific role for a user is always used. The order of specificity for Jump Item Roles, from most specific to least specific, is:

  • The role assigned to the relationship between a user and a Jump Group on the Jump > Jump Item Roles page
  • The role assigned to the relationship between a user and a Jump Group on the Users & Security > Group Policies page
  • The Jump Item Roles configured for a user on the Users & Security > Users page or the Users & Security > Group Policies page

A new Jump Item Role called Auditor is automatically created on new site installations. On existing installations it has to be created. This role only has a single View Reports permission enabled, giving admins the option to grant a user just the permission to run Jump Item reports, without the need to grant any other permission.

Add New Jump Item Role, Edit, Delete

Create a new role, modify an existing role, or remove an existing role.

Add or Edit Jump Item Role

Name

Create a unique name to help identify this role. This name helps when linking a Jump Item Role with a user or group of users in a Jump Group.

Description

Add a brief description to summarize the purpose of this role.

Permissions

Jump Group or Personal Jump Items

Create and deploy new Jump Items

Enables the user to create Jump Items and install them on remote systems.

Move and Copy Jump Items

Enables the user to move or copy Jump Items from one Jump Group into another. This permission must be enabled on both Jump Groups. Copied Jump Items can be edited.

For more information on how to copy Jump Items, please see Jump Items: Use Jump Items to Support Remote Systems.

Remove existing Jump Items

Enables the user to delete Jump Items.

Jump Item

Start Sessions

Enables the user to Jump to remote systems.

Edit Tag

Enables the user to edit a Jump Item's tag field.

Edit Comments

Enables the user to edit a Jump Item's comments field.

Edit Public Portal

Enables the user to set the public portal with which a Jump Item is associated.

Edit Jump Policy

Enables the user to set which, if any, Jump Policy is applied to a Jump Item.

Edit Session Policy

Enables the user to set which, if any, session policy a Jump Item should use. Changing the session policy may affect the permissions allowed in the session.

Edit Connectivity and Authentication

Enables the user to modify a Jump Item's connection and authentication information. This includes such fields as hostname, Jumpoint, port, and username, among others.

Edit Behavior and Experience

Enables the user to modify the behavior of Jump Items. This includes such fields as connection type, display size, and terminal type, among others.

For more information, please see Use Jump Item Roles to Create Permission Sets for Jump Items.