Role Based Access Control in ADEM
Where Can I Use This? | What Do I Need? |
- Prisma Access (Managed by Strata Cloud Manager)
- Prisma Access (Managed by Panorama)
|
- Prisma Access license
- Autonomous DEM license
|
ADEM provides role-based access control to the IT Administrators.
Administrators who log in with ADEM Tier 1 Support role get read-only access to the ADEM
application only.
To assign the ADEM Tier 1 Support role to an existing user, follow these steps:
On the bottom left corner of the left pane in the Prisma SASE user interface,
click under Common Services.
Select a tenant in the left pane on the Common Services
page.
Click Add. The Identity Information
dialog opens.
Enter the email address for the user under Identity
Address and click Next.
Select Prisma Access in the Apps &
Services menu.
Select ADEM Tier 1 Support under the Select a
Role menu.
Click Submit.
When Administrators sign in as ADEM Tier 1 Support role, they see the ADEM application
only as follows:
ADEM Permissions for the IAM Roles
IAM Role | ADEM Permissions |
superuser | read, write |
view_only_admin | read |
network_admin | read |
security_admin | read |
soc_analyst | read |
auditor | read |
tier_1_support | read |
tier_2_support | read |
iam_admin | none |
data_security_admin | none |
business_admin | none |
msp_superuser | read, write |
msp_iam_admin | none |