Role-based access control
Role-based access control (RBAC) in the Cohesity Alta SaaS Protection environment enables you to manage resource access by assigning roles to individual users. Resources include backed-up content, connectors, policies, and more in this context. The roles define users' access to these resources, with permissions governed by the assigned roles. RBAC allows for the customization of roles to meet specific business needs. Roles can be modified or deleted as requirements change, ensuring that only authorized users can access them. Users within the same group inherit the assigned role, enabling them to perform the same operations on the resource.
After Active Directory (AD) synchronization with your environment, all users and groups become recognized by Cohesity Alta SaaS Protection. These users are displayed on the page in the Cohesity Alta SaaS Protection Administration portal. The users synchronized from the customer's AD are classified as , while those added directly through Cohesity Alta SaaS Protection and outside the customer's domains and the users who are deleted from your AD are referred to as . Both the internal and external users are assigned the system role, which provides access to the End-User portal. This Default role grants permissions to search, share, and perform self-restores for content they have access to.