IoT Trust Manager user roles
Assign one or more roles to an IoT Trust Manager user when you add or update the user.
For DigiCert ONE cloud customers, these roles are available in your account.
Primary admin and point of contact for configuring IoT Trust Manager accounts and workflows.
Category | Permission | Description |
|---|---|---|
General | Manage alerts | Configure and apply anomaly detection policies. Update and close alerts when detected and addressed. |
Manage division | Create and manage divisions to manage user access to some IoT Trust Manager assets, such as certificate profiles and intermediate CAs. | |
Manage gateway | Configure and manage a DigiCert gateway for outbound/inbound IoT Trust Manager network traffic. | |
Manage settings | View and update general IoT Trust Manager settings. | |
View audit log | View audit and signature logs in the account. | |
View license | View licenses for the account. | |
Device management | Manage device | Monitor and manage device records for the devices in your IoT production environment. |
Manage device profile | Create and update device profiles that define API access and custom data fields for individual device records. | |
Certificate management | Manage authentication CA | Manage device authentication for certificate requests in your IoT production environment. Create and update authentication CA templates and upload authentication CAs. |
Manage certificate | Manage individual and batch certificate requests and records for issued certificates. | |
Manage certificate profile | Define and manage certificate configuration requirements, including required and optional fields. | |
Manage enrollment profile | Configure certificate enrollment parameters, including allowed enrollment methods, issuing CA, and device and certificate profiles to use. | |
Manage external CAs | Monitor external CAs and manage division and enrollment profile assignments. | |
Manage IoT CA | Request and manage intermediate CAs. | |
Manage OCSP grouping | Manage bulk OCSP calls and responses for certificate status. | |
Manage certificate template | Add and manage certificate structure and format requirements. |
For customers with DigiCert ONE installed on-premises, these roles are available for system administration.
Superadmin responsible for configuring IoT Trust Manager accounts and workflows.
Category | Permission | Description |
|---|---|---|
General | Manage alerts | Configure and apply anomaly detection policies. Update and close alerts when detected and addressed. |
Manage division | Create and manage divisions to manage user access to some IoT Trust Manager assets, such as certificate profiles and intermediate CAs. | |
Manage gateway | Configure and manage a DigiCert gateway for outbound/inbound IoT Trust Manager network traffic. | |
Manage settings | View and update general IoT Trust Manager settings. | |
View app health | View app health (API). | |
View audit log | View audit and signature logs in the account. | |
Device management | Manage device | Monitor and manage device records for the devices in your IoT production environment. |
Manage device profile | Create and update device profiles that define API access and custom data fields for individual device records. | |
Certificate management | Manage authentication CA | Manage device authentication for certificate requests in your IoT production environment. Create and update authentication CA templates and upload authentication CAs. |
View certificate | View individual and batch certificate requests and records for issued certificates. | |
Manage certificate profile | Define and manage certificate configuration requirements, including required and optional fields. | |
Manage enrollment profile | Configure certificate enrollment parameters, including allowed enrollment methods, issuing CA, and device and certificate profiles to use. | |
Manage external CAs | Monitor external CAs and manage division and enrollment profile assignments. | |
Manage IoT CA | Request and manage intermediate CAs. | |
Manage OCSP grouping | Manage bulk OCSP calls and responses for certificate status. | |
Manage certificate template | Add and manage certificate structure and format requirements. |
Support team and auditor read-only access.
Category | Permission | Description |
|---|---|---|
General | View alerts | View anomaly detection policies and detected anomalies. |
View division | View divisions that allow user access to some IoT Trust Manager assets, such as certificate profiles and intermediate CAs. | |
View gateway | View DigiCert gateway configurations for outbound/inbound IoT Trust Manager network traffic. | |
View settings | View and update general IoT Trust Manager settings. | |
View app health | View app health (API). | |
View audit log | View audit and signature logs in the account. | |
Device management | View device | View device records for the devices in your IoT production environment. |
View device profile | View device profiles that define API access and custom data fields for individual device records. | |
Certificate management | View authentication CA | View device authentication for certificate requests in your IoT production environment. |
View certificate | View individual and batch certificate requests and records for issued certificates. | |
View certificate profile | View certificate configuration requirements, including required and optional fields. | |
View enrollment profile | View certificate enrollment parameters, including allowed enrollment methods, issuing CA, and device and certificate profiles to use. | |
View IoT CA | View intermediate CAs requested through your IoT Trust Manager account. | |
View OCSP grouping | View OCSP groups for bulk OCSP calls and responses for certificate status. | |
View certificate template | View certificate structure and format requirements. |