Skip to main content

Who uses CertCentral and role-based access

CertCentral supports multiple user roles that define how users interact with certificate management tasks. Role-based access control ensures users perform only the actions required for their responsibilities while maintaining security and accountability.

User roles in CertCentral

CertCentral includes role-based permissions that control access to account features and certificate operations. Common roles include:

  • Administrators: manage account settings, users, organizations, and certificate operations

  • Managers: oversee certificate requests, approvals, and reporting

  • Standard users: request and manage certificates within assigned permissions

  • Finance users: manage billing, payments, and account credit

Role availability and permissions vary by account type and configuration. Role assignment and modification are covered in Manage users and access.

How role-based access control works

Role-based access control assigns permissions based on user roles:

  • Permissions define the actions a user performs

  • Access is limited by organization or division

  • Users can have different roles across organizations or subaccounts

This model enforces least-privilege access while maintaining operational efficiency.

Assign roles based on responsibilities

Assign roles based on job responsibilities and required access:

  • Limit administrative access to trusted users

  • Assign operational roles to users who manage certificates

  • Restrict financial access to billing-related users

As a best practice, review user roles regularly to ensure access remains appropriate.

What's next

Understand the account types in CertCentral that affects role availability and feature access

In diesem Abschnitt: