Administrators have granular access permission on selected Policy Blocks
In FortiManager, you can configure access permissions to selected Policy Blocks for administrators.
To configure administrator access to Policy Blocks:
-
Go to System Settings > Administrators and create or edit an administrator.
-
Under Policy Block, you can specify the Policy Blocks that the administrator will have read/write access to.
-
All Policy Blocks: The administrator has access to all Policy Blocks.
-
SpecifyThe administrator will only have access to the specified Policy Blocks. The administrator can see that unspecified Policy Blocks exist and can see them in Policy Packages, but they cannot be edited, moved, or deleted.
Only Policy Blocks in ADOMs to which the Administrator has access are displayed in the Specify list.
-
-
Click OK to save the administrator.
Example of specifying administrator access to Policy Blocks:
-
In an ADOM , two Policy Blocks have been configured: PB1 and PB2.
-
An new administrator is configured with permissions to allow management for two Policy Packages and Policy Block PB1.
-
In Policy & Objects > Policy Packages, the administrator can see the Policy Packages and both Policy Blocks, but only has edit/move/delete permissions for PB1.
-
The administrator can see that Policy Block PB2 exists in the Policy Package, but cannot edit, add, or remove it.