CyfroSec

Getting Started

Role Based Access Control (RBAC)

Granular permissions and control according to user roles so that you know who has access to what.

Structure

  1. 1Organization: The top-level customer entity (e.g., "FinWiz Corp"). Contains Billing and Settings.
  2. 2Account Group: A subdivision of organization (e.g., "AI Datacenter", "EU Branch"). Contains Assets and Scans.

Roles

  1. 1Organization Admin: Customer admin who manages their entire organization.
  2. 2Account Group Admin: Customer admin who manages a specific subdivision.
  3. 3User: Standard customer user with read-only/execute permissions.
Scoped RolePermissions
Organization AdminFull control over their organization: users, account groups, agents, tests, results, billing view
Account Group AdminManage a specific account group: agents, tests, results, user assignment
UserRead-only: view dashboard, generate reports, read results

Permission Matrix

Permission CategoryOrg AdminGroup AdminUser
Create AgentYY-
Create TestYY-
View DashboardYYY
Manage DashboardYY-
Generate ReportYYY
View Audit LogsYY-
Manage ORTYY-
Manage UsersY--
Manage OrgY--
Manage GroupsYY-
Manage AgentsYY-
Manage TestsYY-
Read ResultsYYY
BillingY (view)--
Impersonate User---