Creating and managing roles
Acunetix Premium+ offers role-based access control (RBAC) to manage user access and assign specific roles to your users. By assigning a role to users, you can ensure that users only have access to the features they need to perform their job effectively while limiting their access to features that are irrelevant to their role. This document explains default roles and provides instructions on how to create custom roles.
NOTE: Each user must have at least one role assigned to them. |
Default roles in Acunetix
When creating a user, you need to choose a role for that user. The first account that is created has the System Administrator role (previously Platform Administrator). The System Administrator can create additional users, giving a role to each user and configuring which scan targets can be scanned or reported on. These users can be given permissions on specific Target Groups, and they can create new targets, scan them, or report on the targets within the group.
TIP: For more information about permission levels in Acunetix, refer to Permissions in Acunetix. |
Acunetix has five default roles. The table below shows the default roles and what these roles can be responsible for.
Default Roles | |||||
Feature | System Administrator | Platform Administrator | AppSec Admin | AppSec User | Report Viewer |
Scan Targets | Full Access | Full Access | Full Access | Read | Read |
Scan Target Groups | Full Access | Full Access | Read | Read | Read |
Scan Profiles | Full Access | Full Access | Read | Read | Read |
Issue Trackers | Full Access | Full Access | Full Access | Read | Read |
Vulnerabilities | Full Access | Full Access | Full Access | Full Access | Read |
Scans | Full Access | Full Access | Full Access | Full Access | Read |
Reports | Full Access | Full Access | Full Access | Full Access | Full Access |
System | Full Access | None | None | None | None |
WAF | Full Access | Full Access | Full Access | Read | Read |
Engines (On-Premises only) | Full Access | Read | None | None | None |
Discovery | Full Access | Full Access | Full Access | None | None |
Excluded Hours | Full Access | Full Access | Read | Read | Read |
API Discovery | Full Access | Full Access | None | None | None |
Creating custom roles
In addition to the default roles, System Administrators can create custom roles based on permissions, clone default roles (except the System Administrator role), edit custom roles, and delete custom roles. This gives you greater control over user access and the ability to fine-tune permissions for individual users. You can assign a role to a user while adding the user to Acunetix.
How to create a custom role
- Log in to Acunetix.
- From the main menu, select Settings.
- Select Users & Access > Roles > + Add New Role.
- On the Add New Role page:
- Enter the Role Name (required).
- Enter the Role Description.
- Select one or more permissions based on your needs.
- Click Submit to save your custom role.
Once saved, your new role appears on the Roles page.
NOTE: To assign the new role to users, you need to go to the Users page. For further information, refer to Managing users. |
How to edit a custom role
- Log in to Acunetix.
- From the main menu, select Settings.
- Select Users & Access > Roles.
- On the Roles page, select Edit next to the custom role.
- Make your changes to the role name, description, and permissions.
- Click Submit to save your changes.
How to delete a custom role
- Log in to Acunetix.
- From the main menu, select Settings.
- Select Users & Access > Roles.
- Click the three dots icon next to a custom role to display the options.
- Select Delete Role.
- On the confirmation dialog, click Yes to delete the role.
How to clone a role
- Log in to Acunetix.
- From the main menu, select Settings.
- Select Users & Access > Roles.
- Click the three dots icon next to a role to display the options.
- Select Clone Role.
- On the Clone Role page, enter a role name and description, then select permissions.
- Click Submit to save your cloned role.
Once saved, your new role appears on the Roles page.