Role Based Access Controls

Open-AudIT Enterprise includes User Roles, full role-based access control (RBAC) allowing fine-grained control over each user’s experience.

Get the complete Open-AudIT Enterprise experience. Creating roles allows fine-grained control over what your users can do within Open-AudIT.

The primary method for authorisation (what a user can do) is based on the user’s Roles. Default roles are defined as admin, org_admin, reporter and user. Each role has a set of permissions (Create, Read, Update, Delete) for each endpoint. The ability to define additional roles and edit existing roles is enabled in Open-AudIT Enterprise.

Roles can also be used with LDAP (Active Directory and OpenLDAP) authorisation. Enterprise licensed installations have the ability to customise the LDAP group for each defined role.