Roles & Permissions
Control user access levels in Altostrat through roles, permissions, and fine-grained capabilities.
Altostrat uses Roles to group Permissions, determining who can view, create, update, or delete resources in your organization.
System Roles vs. Custom Roles
- System Roles: Predefined roles (e.g., Administrator) with typical permissions
- Custom Roles: User-defined roles with precise permission settings for advanced control
Permissions Overview
Permissions are grouped by category (Teams, Sites, Security, etc.). When assigned to a role, any user with that role inherits these capabilities.
Here’s a detailed look at key permission categories:
Additional categories include WAN, Jobs, Notifications, and more. Assign these permissions based on your organizational needs.
Creating a Role
Open Roles & Permissions
Navigate to Settings → Roles & Permissions in the Altostrat Dashboard. You’ll see a list of existing roles.
Add a New Role
Click + Add. Enter a descriptive name (e.g., “NOC Ops”) that reflects the role’s responsibilities.
Choose Permissions
From the permissions list, select the appropriate checkboxes (e.g., Teams View, Site View, Site Action) for this role.
Save
Click Save to create the role. It’s now ready for user assignment.
Editing a Role
Select the Role
In Roles & Permissions, find and click the role name you want to modify.
Modify Permissions
Adjust permissions by selecting or deselecting checkboxes. For example, add site action permissions or remove security privileges as needed.
Save Changes
Click Update -> to apply your changes. All users with this role will receive the updated permissions. Users may need to refresh their page or log in again to see the changes.
Deleting a Role
Deleting a role immediately revokes all associated permissions from users who have that role.
Locate the Role
Go to Settings → Roles & Permissions and find the role you want to delete.
Delete the Role
Click the menu icon (three dots) or trash icon next to the role name. Confirm the deletion. Ensure affected users have alternative roles assigned if they need to maintain certain permissions.
You may need to scroll to the side of the page if there are roles with a lot of permissions.
Best Practices
- Start with System Roles: Use predefined roles when first setting up your permissions structure
- Create Custom Roles: Develop specialized roles for specific teams (e.g., “Security Ops,” “Support Agents”)
- Conduct Regular Audits: Review and update role permissions to maintain security
- Apply Least Privilege: Grant only the minimum permissions necessary for users to perform their tasks