Use Roles to Manage App Access
Table of Contents
Use Roles to Manage App Access
The roles assigned to your account determine what you
are able to do with a given app.
Roles are used to identify the level of
access that a user has for an app. Some
roles are administrative—they allow a user to assign roles
to other users—while other roles indicate the level of access a
user has for an app instance. For the roles that define access,
all apps include a standard Instance Administrator role. But some apps include additional roles
that enable fine-grained control of user access to the app.
Currently, only apps developed by Palo Alto Networks can
use custom roles. If an app has implemented granular roles, see
that app's product documentation for information about what a user
can do when assigned a particular role.
To manage roles, navigate to Settings
(
![]()
)Access Management.
