By default, a CTERA Portal includes built-in administrator roles:
Compliance Officer – The administrator can manage CTERA Vault on folders. For details, see Folder (WORM) Compliance: CTERA Vault.
Read/Write Administrator – The administrator has read/write permissions throughout the portal.
Read Only Administrator – The administrator has read-only permissions throughout the portal.
Support – The use has read/write access to devices, user accounts, folders, and folder groups, and read-only access to all other settings in the portal.
Archive Operator – The user can manage data archiving.
You can customize these roles by adding or removing permissions.
To customize an administrator role:
-
Select Settings > Control Panel in the navigation pane.
The Control Panel page is displayed.
-
Select User Roles, under User Settings.
The Roles page is displayed.
-
Select a user tab.
The roles for that user is displayed. -
Slide on the permissions you want to include in the role, and slide off those that you don't want to include.
NoteThe permissions that can be included are role dependent.
Super User – Allow all the permissions.
Access End User Folders – Allow administrators to access and modify end user files and folders. If this option is not selected, and an administrator with this role attempts to access an end user's folder, the administrator will be prompted to enter the folder owner’s password.- Allow Files/Folders Permanent Deletion – Allow administrators to permanently delete end user files, folders and backups. Permanent deletion means that the file is not saved for the amount of time specified for the The numbers of days to keep deleted files value in the snapshot retention policy, but it and all versions saved in previous snapshots are deleted as well as the version on all devices.
Manage Cloud Folders – Allow administrators to manage cloud folders. Without this permission, an administrator only has read/write access to:
- Folders to which he is the owner.
- Folders that are owned by someone in a user group the administrator belongs to.
- Folders to which the administrator has collaboration permissions.
For all other projects, backup folders and personal folder objects, the administrator has read-only access. Also, without this permission, the administrator cannot approve or reject a team project folder request, as described in Approving Or Rejecting a Team Project Folder.
NoteA Read/Write Administrator with both Access End User Folders and Manage Cloud Folders roles can also share the end user cloud folders.
Manage Compliance Vault Settings – Allow administrators to manage WORM compliance settings for cloud folders. For details, see Folder (WORM) Compliance: CTERA Vault.
NoteThe Compliance Officer role has this value set by default.
Manage Users – Allow administrators to edit user emails and passwords and add, edit, and delete users.
- Modify User Email – Allow administrators to modify the email addresses associated with user accounts.
- Modify User Password – Allow administrators to modify the passwords associated with user accounts.
Manage Plans – Allow administrators to add, edit, delete, assign, set defaults, and remove default plans.
Modify Virtual Portal Settings – Allow administrators to modify virtual portal settings. This option is selected by default and cannot be modified.
Modify Roles – Allow administrators to modify administrator roles.
Allow Single Sign On to Devices – Allow administrators to remotely manage devices for which Remote Access with single sign on (SSO) is enabled, without entering the username and password for accessing the device.
Allow Remote Wipe for Devices – Allow administrators to perform remote wipe of CTERA Mobile devices.
Manage Data Archive – Allows administrators to archive data by moving inactive data to secondary storage.NoteThe Archive Operator role has this value set by default.
- Allow Permanently Delete Archive Source Previous Versions – Allows users with Manage Data Archive rights to permanently delete archived source data.
Edge Filers Management – Allows administrators to select and manage which edge filers are assigned to specific shares.
- Allow Files/Folders Permanent Deletion – Allow administrators to permanently delete end user files, folders and backups. Permanent deletion means that the file is not saved for the amount of time specified for the The numbers of days to keep deleted files value in the snapshot retention policy, but it and all versions saved in previous snapshots are deleted as well as the version on all devices.
-
Click Save.
Permissions Per Administrator Role
The different administrator roles have different permissions.
| Permission | Compliance Officer | Read/Write Administrator | Read Only Administrator | Support | Archive Operator |
|---|---|---|---|---|---|
| Super User | No | Yes (Default is No) | No | No | No |
| Access End User Folders | Yes | Yes | Yes | Yes (Default is No) | Yes (Default is No) |
| Allow Files/Folders Permanent Deletion | Yes | Yes | No | Yes (Default is No) | Yes (Default is No) |
| Manage Cloud Folders | Yes | Yes | No | Yes | Yes (Default is No) |
| Manage Compliance Vault Settings | Yes | Yes | No | No | Yes (Default is No) |
| Manage Users | Yes | Yes | No | Yes | Yes (Default is No) |
| Modify User Email | Yes | Yes | No | Yes | Yes (Default is No) |
| Modify User Password | Yes | Yes | No | Yes | Yes (Default is No) |
| Manage Plans | Yes | Yes | No | Yes | Yes (Default is No) |
| Modify Virtual Portal Settings | Yes | No | No | Yes (Default is No) | Yes (Default is No) |
| Modify Roles | Yes | Yes | No | Yes (Default is No) | Yes (Default is No) |
| Allow Single Sign On to Devices | Yes (Default is No) | Yes | Yes (Default is No) | Yes (Default is No) | No |
| Allow Remote Wipe for Devices | Yes | Yes | Yes (Default is No) | Yes (Default is No) | Yes (Default is No) |
| Manage Data Archive | Yes (Default is No) | Yes | No | No | Yes |
| Allow Permanently Delete Archive Source Previous Versions | Yes (Default is No) | Yes | No | No | Yes |
| Edge Filers Management | Yes (Default is No) | Yes | No | Yes (Default is No) | Yes (Default is No) |