Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Web UI Administrator's Guide
  5. Section IX. Managing security
  7. Managing role-based access control (RBAC)
  9. Add a custom RBAC role
  11. Add a custom RBAC role for a PaaS administrator
NetBackup™ Web UI Administrator's Guide

Add a custom RBAC role for a PaaS administrator

A PaaS administrator needs additional storage permissions. You can use the Default Cloud Administrator role as a template to create a custom role.

To add a custom RBAC role

  1. On the left, select Security > RBAC and click Add.
  2. Select Default Cloud Administrator.
  3. Provide a Role name and a description.

    For example, you may want to indicate that the role is for any users that are PaaS administrators.

  4. Under Permissions, click Assign.
  5. On the Global tab, expand the Storage section. Select the following permissions.

    Disk pools

    View

    Storage servers

    View

    Storage universal shares

    View, Create

  6. On the Assets tab, under desired policy type / workload section select the following permissions:

    • Instant access

    • Restore from malware-infected images (Required to restore from malware infected images)

  7. Click Assign.
  8. Under Users, click Assign. Then add each user that you want to have access to this custom role.
  9. When you are done configuring the role, click Add role.

Feedback

Was this page helpful?
Previous

Add a custom RBAC role to restore Azure-managed instances

Next

Add a custom RBAC role for a Malware administrator

Feedback

Was this page helpful?