Admin Profiles
Administrator profiles are used to control administrator access privileges to system features. Profiles are assigned to administrator accounts when an administrator is created.
Pre-defined profile types
The following pre-defined administrator profiles cannot be modified or deleted:
- OperatorProfile: Can view certain pages. This profile cannot change any system settings.
- SuperAdminProfile: All functionalities are accessible.
Access Permissions
The following table shows the default settings for the pre-defined profile types:
Access Permissions |
Operator Profile |
SuperAdminProfile |
---|---|---|
System status |
Read |
Read/Write |
System Access |
None |
Read/Write |
System Configuration | None | Read/Write |
System Maintenance | None | Read/Write |
Virtual Security Analyst |
Read |
Read/Write |
To create an Admin Profile:
- Go to System > Admin Profiles.
- Click Create New. The Create Access Profile page opens.
- Configure the Access Permissions.
System status Grant access to Dashboard > System Status System Access Grant access to the features in Security Fabric System Configuration Grant access to the features in Network System Maintenance Grant access to the features in System Virtual Security Analyst Grant access to the features in Virtual Security AnalystAccess Permissions
Description
System status Grant permissions to settings critical to FortiNDR network accessibility, including GUI console, Network, Administrators, Admin Profiles, Certificates, and RADIUS/LDAP authentication. System Access Grant permission to modify other system settings such as system time settings, system FortiGuard update, and Security Fabric settings. System Configuration Grant permissions to access system maintenance settings such as back up system configuration, restore configuration, and restore firmware. System Maintenance Grant permissions to access to the system to check its status. Users with this permission set to none cannot log into the system. The default is none in the GUI. Virtual Security Analyst Grant permissions to access settings in Virtual Security Analyst such as Express Malware Analysis, Outbreak Search, Static Filter, NDR Muting, ML Configuration, Malware Big Picture and Device Enrichment. - If you are operating in Center mode, select a sensor.
- Under Sensor, click Selection.
- Select the sensor from the list and click Close.
- Click OK.