Managing User Roles and Permissions

Control who sees and edits what with a complete guide to user roles and permissions.

Riley Carter
Riley Carter
November 7, 2024

Maintaining control over who accesses what is crucial. Velocty, Swyft’s comprehensive cybersecurity software, enables you to assign and manage user roles and permissions to enhance security and streamline operations.

This guide explains how to manage user roles and permissions effectively to safeguard your system while maintaining productivity.

Mockup illustration of the Velocty Dashboard

Why Are Roles and Permissions Important?

User roles and permissions help enforce the principle of least privilege (PoLP), a core cybersecurity concept that ensures users only access the data and tools they need to perform their tasks. Key benefits include:

  • Enhanced Security: Limit access to sensitive areas and reduce the risk of internal threats.
  • Efficient Management: Assign roles to users instead of managing access individually.
  • Regulatory Compliance: Meet industry standards by ensuring access control.

Role Types in Velocty

Velocty provides several predefined roles to simplify user management. These include:

  1. Admin:
    • Full access to all settings, data, and tools.
    • Ideal for IT administrators or security leads.
  2. Editor:
    • Can edit settings, create configurations, and manage workflows.
    • Suitable for team leads or advanced users.
  3. Viewer:
    • Read-only access to dashboards and reports.
    • Perfect for stakeholders who need to monitor progress.
  4. Custom Roles:
    • Create roles with specific permissions tailored to your organization’s needs.

Common Questions

1. Can I assign multiple roles to one user?
No, users can only have one role at a time. For complex needs, use custom roles to combine permissions.

2. What happens if a user’s role is downgraded?
When a user’s role is downgraded, they lose access to features and data outside their new role’s permissions. Their work remains intact but inaccessible to them.

3. How do I remove a user’s access entirely?
Go to the User Management tab, locate the user, and select Deactivate User from the Actions menu. This preserves their data but prevents access.

How to Assign Roles and Permissions in Velocty

Follow these steps to manage roles and permissions effectively:

Step 1: Log In to Velocty

  1. Go to the Velocty login page.
  2. Enter your credentials and click Sign In.
  3. Access the dashboard.

Step 2: Open User Management

  1. Click on your profile icon in the top-right corner.
  2. Select Account Settings from the dropdown menu.
  3. Navigate to the User Management tab.

Step 3: Assign or Update Roles

  1. Locate the user you want to modify.
  2. Click the Actions menu (three dots) next to their name.
  3. Select Edit Role.
  4. Choose the appropriate role from the dropdown list:
    • Admin
    • Editor
    • Viewer
    • Custom Role (if applicable)
  5. Click Save Changes.

Step 4: Configure Custom Permissions (Optional)

  1. If creating a custom role, select Custom Role in the role assignment dropdown.
  2. Specify access levels for different modules:
    • Reports: View, edit, or no access.
    • Incident Response: Full access or view-only.
    • System Settings: Modify or restrict access.
  3. Save the custom role to apply changes.

Best Practices for Managing Roles

  1. Review Roles Regularly:
    Conduct periodic reviews to ensure users have appropriate access levels based on their responsibilities.
  2. Use the Principle of Least Privilege:
    Assign the minimum permissions necessary for users to perform their jobs.
  3. Audit User Activity:
    Monitor user actions to detect unauthorized access or potential security breaches.
  4. Document Role Changes:
    Keep a log of all role assignments and modifications for accountability and compliance.