In this article, you will discover which are the different user profiles, how to consult your rights and how to customize a profile.

SUMMARY

• Introduction to user profiles
  • Managers
  • Regular user
  • External provider
• Consult your rights
• View the available profiles of your company
• Create a new profile

Introduction to user profiles

In order to address rights issues, there are 3 types of user accounts with different privilege levels:

• managers of the company or for a product/module
  
• regular users
  
• service providers

Their different permissions are listed below:

	Account creation	Scope creation	Scope change	Action ticket change	Action ticket consultation
Manager
Manager d'un module	In his module	In his module	In his module	In his module	In his module
Utilisateur			In his scopes	In his scopes	In his scopes
Prestataire externe					In his scopes

Managers

Manager profile

A manager administers the general aspects of the platform:

• user management (consultation, creation, modification, deletion)
• management of user profile types (consultation, creation, modification, deletion, assignment of a profile type to a user)
• management of patch management, action tickets (consultation, creation, modification, deletion)

The first user created will always have the Manager profile, so that he can add other users.

Module Manager profile

Watch Manager

The Watch manager administers the aspects related to Yuno:

• scopes management (consultation, creation, modification, deletion)
• patch management (consultation, creation, modification, deletion)
• user management (in common with the manager profile), except for the assignment of a profile type to a user.

Pentest Manager

The Pentest manager administers the aspects related to audits:

• pentest scope management (consultation, creation, modification, deletion)
• asset management (consultation, creation, modification, deletion)
• vulnerabilities and recommendations management (consultation, creation, modification, deletion)
• user management (in common with the manager profile), except for the assignment of a profile type to a user.

Serenety Manager

The Serenety manager administers the aspects related to Serenety:

• scopes management (consultation, creation, modification, deletion)
• asset management (consultation, creation, modification, deletion)
• Serenety alerts management (consultation, creation, modification, deletion)
• user management (in common with the manager profile), except for the assignment of a profile type to a user.

Forensics Manager

The Forensics manager administers the aspects related to Forensics:

• Forensics scopes management (consultation, creation, modification, deletion)
• vulnerability management (consultation, creation, modification, deletion)
• user management (in common with the manager profile), except for the assignment of a profile type to a user.

Regular user

The regular user has all the rights necessary to operate his scopes:

• scopes management (consultation, creation, modification, deletion) if added in the user list of the scope
• consultation of the list of other users
• consultation of user profile types
• consultation, creation and modification of action tickets (no deletion)

External provider

The external provider profile has mainly consultation rights:

• consultation of scopes
• consultation of action tickets
• consultation of the list of users

These profiles do not meet your needs? Feel free to create your own profiles! We can also develop custom profiles, please contact us to learn more.

Consult your rights

Step 1 : Consult your own profile

• In the header, click on the round icon on the right, then on Account settings to access your account parameters
• Click on the Permissions submenu
  

Step 2 : Consult the rights attached to your profile

• In the Roles section, there is a list of rights associated with each module
• In the Rights on scopes section, there is a list of the perimeters to which you have access, with the mention Read or Read and Write.

If you are a Manager, you automatically have access to all the scopes of the company. 
If you are a Module Manager, you automatically have access to all the scopes of the module in your company.

In these cases, the section will not display the scopes where you have not been specifically added in the user list.

View the available profiles of your company

Step 1 : Go to the Profiles section

• In the menu, click on Configuration then choose the Profiles tab

Step 2 : Consult the availables rights for each profile

• For each of the existing profiles, the eye icon shows the associated rights:
  • Each right belongs to a section, usually a module
  • The default profiles can neither be deleted nor modified
  • The profiles visible to the connected user are the profiles available in his company

Create a new profile

In order to create a personalized profile, you must have at least a Manager profile.

Step 1 : Consult your own rights

See the previous section.

Step 2 : Create a new profile

• Click on the + button
  
• Choose the profile name (Nom du profil)
  
• Choose the rights associated to this profile
  • The rights are organized by tab, feel free to consult them all!
  • The toggle switches allow to activate and deactivate each right.
  • For each right, it is possible to have a more detailed description by clicking on the arrow icon.

• Click on the Create profile button
  

Step 3 : Test the new profile

• Create a new user account with this profile
• Test the access to the Portal

If you encounter the slightest problem, remember to report it to our teams or open a freshdesk ticket.