Jump Item Roles: Configure Permission Sets for Jump Items
Jump Item Roles
A Jump Item Role is a predefined set of permissions regarding Jump Item management and usage. Jump Item Roles are applied to users from the Jump > Jump Groups page, from the Users & Security > Group Policies page, or from the Users & Security > Embassy page.
If more than one role is assigned to a user, then the most specific role for a user is always used. The order of specificity for Jump Item Roles, from most specific to least specific, is:
- The role assigned to the relationship between a user and a Jump Group on the Jump > Jump Groups page.
- The role assigned to the relationship between a user and a Jump Group on the Users & Security > Group Policies page or the Users & Security > Embassy page.
- The Jump Item Roles configured for a user on the Users & Security > Users page, the Users & Security > Group Policies page, or the Users & Security > Embassy page.
Add New Jump Item Role, Edit, Delete
Create a new role, modify an existing role, or remove an existing role.
Jump Item Role :: Add or Edit
Create a unique name to help identify this role. This name helps when linking a Jump Item Role with a user or group of users in a Jump Group.
Add a brief description to summarize the purpose of this role.
Jump Group or Personal Jump Items
Create and deploy new Jump Items
Enables the user to create Jump Items and install them on remote systems.
Move Jump Items
Enables the user to move Jump Items from one Jump Group into another. This permission must be enabled on both Jump Groups.
Remove existing Jump Items
Enables the user to delete Jump Items.
Enables the user to Jump to remote systems.
Enables the user to edit a Jump Item's tag field.
Enables the user to edit a Jump Item's comments field.
Edit Public Portal
Enables the user to set the public portal with which a Jump Item is associated.
Edit Jump Policy
Enables the user to set which if any Jump Policy is applied to a Jump Item.
Edit Session Policy
Enables the user to set which if any session policy a Jump Item should use. Changing the session policy may affect the permissions allowed in the session.
Edit Connectivity and Authentication
Enables the user to modify a Jump Item's connection and authentication information. This includes such fields as hostname, Jumpoint, port, and username, among others.
Edit Behavior and Experience
Enables the user to modify the behavior of Jump Items. This includes such fields as connection type, display size, and terminal type, among others.
Jump Clients Only
Enables the user to password-protect Jump Clients.
Enables the user to access password-protected Jump Clients without needing to know the password.