Create roles to refine the permissions granted to Management Console users.

Management Console users are not to be confused with operating system users with permissions on the operations described in Command reference.

To create a Management Console role

  1. Open the following URL in a Web browser. 

    https://<machine>/management-console

    Where <machine> is the IP address or domain name of the machine hosting Cryptographic Security Platform.

  2. Log into the Management Console a user belonging to a role with role management permissions – for example, the initial admin administrator user. 
  3. Select Roles in the Administer menu.
  4. Click Create
  5. Complete the following fields in the Create form.
  6. Click Create to confirm the changes.


Name

A unique name for the role, at least two characters long.

Description

An optional description of the role.

Permissions

The permissions granted by the role

Category

Permission

Operation

Solutions

Manage and Operate Certificate Authority (CA)

See Managing Certificate Authority

Manage CA Gateway (CAGW)

See Managing CA Gateway

Manage Certificate Enrollment Gateway (CEG)

See Managing Certificate Enrollment Gateway

Manage Certificate Manager

See Managing Certificate Manager

Manage Validation Authority (EVA)

See Managing Validation Authority

Manage Timestamping Authority (TSA)

See Managing Timestamping Authority

Users

Manage Users 

See Creating Management Console users

Roles

Manage Roles

The role creation and management operations described in this page

Identity Providers

Manage Identity Providers

See Integrating Identity providers