Assigning or removing access permissions to individual applications

You can assign Standard Users and QuickScan Users full, basic, or read-only access to specific applications within their organization.

Before you begin

Note:
Table 1. Access permissionsThis table illustrates the types of user access control for applications.

Privilege/Access type Read Only Basic Full
View application attributes of an application Y Y Y
Modify application attributes of an application Y
Manage access control of an application Y
Manage associated scans of an application Y Y
Delete an application Y
Manage issues on all applications Y Y
Add comments to issues when the global option is enabled Y Y Y

Full access takes precedence over basic access. Some users within a user group might have more access permissions than other users. Typically, you assign access control for each application. You can also create custom user types to give access permissions on all applications. For more information, see Creating customized user access for all applications.

Procedure

Go to the Users section of the application details dialog. Add users and assign an access level to the application.
Tip: You can select multiple user or groups at a time.

Examples of access permissions for team members

Each team member requires access permissions that depends on their role and application use.

Table 2. Access permissions by job role and application use

Role Application use Access level
IT Security Team
  • create or import applications
  • edit or delete applications
  • view application inventory and understand the risk of the applications that are owned by the organization
  • create third-party scanner profiles, such as manual pen testing or Nessus Vulnerability Scanner
  • create issue profiles
  • import issues from third-party scanners
Full
Security Champion
  • create, edit, and delete applications
  • grant access to specific applications
Full
Developer
  • view the applications that they are responsible for so they can see the vulnerabilities they need to fix.
  • associate scans with the applications they are responsible for
Basic
Manager

view the applications and issues that relate to the team or organization.

Read-only