Skip to main content

Rôles utilisateur et accès à un compte CertCentral

When adding users to your CertCentral account, you assign a role to each user instead of granting individual permissions. Each user role has specific permissions that define what the individual can access and do within CertCentral.

CertCentral account types and available user roles

You may have two or five user roles to select from in your CertCentral account, depending on what type of account you have. Learn how to identify your CertCentral account.

Subscription and legacy CertCentral accounts

Subscription and legacy CertCentral accounts have two user roles that you can select from when adding users to your account:

  • Administrator: Full administrative access, including access to create users and to manage user access.

  • Finance Manager: Access to manage finances and to place and manage orders.

Enterprise and Partner CertCentral accounts

Depending on your Enterprise or Partner account setup, you may have up to five user roles to select from when adding users to your account:

  • Administrator: Full administrative access, including access to create divisions and users, and to manage user access.

  • Manager: Access to manage finances, create and approve requests, manage orders and domains, and view and edit users.

  • Finance Manager: Access to manage finances and to place and manage orders.

  • Standard User: Access to place and manage orders, with changes approved by a manager or administrator.

  • Limited User: Access to place and manage their own orders, with changes approved by a manager or administrator.

CertCentral divisions: unrestricted or restricted roles

If using division in your Enterprise or Partner CertCentral account, user roles fall into two categories: unrestricted and restricted. Unrestricted roles have permission to access all divisions in your account. Restricted roles have permission to access their assigned division divisions.

For example, you must be an unrestricted administrator to view and update CertCentral account settings. An unrestricted administrator can access the Settings menu options, like Preferences and Notifications, in CertCentral, whereas a restricted administrator never sees Settings.

Tableau 1. CertCentral roles and their account accesses: unrestricted versus restricted

Administrator

Unrestricted

Full CertCentral access and permissions:

  • Manage divisions (create and update) and account users (create, delete, and update).

  • Manage organizations (add new organizations), domains (add or deactivate), guest requests, and API (application programming interface) access.

  • View all certificate requests and certificate orders, request certificates, approve certificate requests, and generate order reports.

  • Manage account finance settings and finances (view balance history, generate spending reports, deposit funds, and more).

  • Manage account settings (authentication settings, IP access restrictions, product restrictions, and more), audit settings, and Audit logs.

  • Manage Automation and Discovery.

Restricted

Access to their assigned division and these permissions:

  • Manage assigned divisions.

  • View domains assigned to their divisions and manage guest requests and API access.

  • View their division certificate requests and certificate orders, request certificates, approve certificate requests, and generate order reports.

  • Manage their division finances (view balance history, generate spending reports, deposit funds, and more).

  • Manage Automation and Discovery for assigned divisions.

Manager

Unrestricted

Limited account users whose primary role is to help manage the account with these permissions:

  • View divisions.

  • View and update account user information.

  • View organizations and manage domains (add or deactivate).

  • View all certificate requests and certificate orders, request certificates, approve certificate requests, and generate order reports.

  • Manage account finance settings and finances (view balance history, generate spending reports, deposit funds, and more).

  • Manage audit settings and Audit logs.

  • Manage Automation and Discovery.

Restricted

Limited division users whose primary role is to help manage their divisions with these permissions:

  • View their assigned divisions.

  • View and update user information in their assigned division.

  • View their division’s certificate requests and certificate orders, request certificates, approve certificate requests, and generate order reports.

  • Manage division finances (view balance history, generate spending reports, deposit funds, and more).

  • Manage Automation and Discovery for their assigned divisions.

Finance Managers

Unrestricted

Limited account users whose primary role is to manage account finances with these permissions:

  • View balance history, spending reports, and account pricing.

  • Manage purchase orders and deposit funds.

  • Manage order reports.

  • Request certificates.

  • Monitor their own certificate requests and orders.

Restricted

Limited division users whose primary role is to manage their division finances with these permissions:

  • View their assigned divisions’ balance history, spending reports, and account pricing.

  • Manage their assigned divisions’ purchase orders and deposit funds.

  • Manage their assigned divisions’ order reports.

  • Request certificates for the divisions to which they’re assigned.

  • Monitor their own certificate requests and orders.

Standard Users

Unrestricted

Limited account users with these permissions:

  • Request certificates.

  • Monitor certificate requests and orders, their own and others.

  • A manager or administrator must approve changes.

Restricted

Limited division user with these permissions:

  • Request certificates for their assigned divisions.

  • Monitor certificate requests and orders, their own and others in their assigned divisions.

  • A manager or administrator must approve changes.

Limited Users

You can remove permission from the Standard User role to create the Limited User role.

Unrestricted

Limited account users with these permissions:

  • Request certificates.

  • Monitor their own certificate requests and orders.

  • A manager or administrator must approve changes.

Restricted

Limited division users with these permissions:

  • Request certificates for their assigned divisions.

  • Monitor their own certificate requests and orders.

  • A manager or administrator must approve changes.


Dans cette section​: