Remediation Permissions

Our service gives users Role-Based Access Control. Users are granted access to WAS features and functions based on Roles. These Roles are a consolidation of fine grained Permissions. Managers have full rights and can configure roles and permissions using the Administration utility.

How to find Roles

Choose the Administration utility from the app picker. Then go to the Role Management section to see user roles and their related permissions. For example the WAS Scanner role defines permissions for a Scanner user with permissions to the WAS module.

Choose a role and configure permissions for the role.

Several permissions groups are available for the WAS module including one group for WAS Remediation Permissions.

List of various permissions related to remediation in WAS.

Ignore findings - This permission determines whether users are permitted to modify the vulnerabilities detected by Web Application scans.

Restest vulnerabilities and sensitive content - This permission determines whether users are permitted to re-run scans from reports.

Update findings - This permission determines whether users are permitted to suppress findings from reports.

Still have questions?

How do I see a user's assigned roles and permissions? Go to the Administration utility and view/edit the user of interest.

Do you have Express Lite? If yes, you and other users in your subscription have full permissions. You will not need to customize permissions.