Jump Item Roles: Configure Permission Sets for Jump Items

Jump > Jump Item Roles

Jump Item Roles

A Jump Item Role is a predefined set of permissions regarding Jump Item management and usage. Jump Item Roles are applied to users from the Jump > Jump Groups page, from the Users & Security > Group Policies page, or from the Users & Security > Embassy page.

If more than one role is assigned to a user, then the most specific role for a user is always used. The order of specificity for Jump Item Roles, from most specific to least specific, is:

  • The role assigned to the relationship between a user and a Jump Group on the Jump > Jump Groups page.
  • The role assigned to the relationship between a user and  a Jump Group on the Users & Security > Group Policies page or the Users & Security > Embassy page.
  • The Jump Item Roles configured for a user on the Users & Security > Users page, the Users & Security > Group Policies page, or the Users & Security > Embassy page.

Add New Jump Item Role, Edit, Delete

Create a new role, modify an existing role, or remove an existing role.

Jump Item Role :: Add or Edit

Name

Create a unique name to help identify this role. This name helps when linking a Jump Item Role with a user or group of users in a Jump Group.

Description

Add a brief description to summarize the purpose of this role.

Permissions

Jump Group or Personal Jump Items

Create and deploy new Jump Items

Enables the user to create Jump Items and install them on remote systems.

Move Jump Items

Enables the user to move Jump Items from one Jump Group into another. This permission must be enabled on both Jump Groups.

Remove existing Jump Items

Enables the user to delete Jump Items.

Jump Item

Start Sessions

Enables the user to Jump to remote systems.

Edit Tag

Enables the user to edit a Jump Item's tag field.

Edit Comments

Enables the user to edit a Jump Item's comments field.

Edit Public Portal

Enables the user to set the public portal with which a Jump Item is associated.

Edit Jump Policy

Enables the user to set which if any Jump Policy is applied to a Jump Item.

Edit Session Policy

Enables the user to set which if any session policy a Jump Item should use. Changing the session policy may affect the permissions allowed in the session.

Edit Connectivity and Authentication

Enables the user to modify a Jump Item's connection and authentication information. This includes such fields as hostname, Jumpoint, port, and username, among others.

Edit Behavior and Experience

Enables the user to modify the behavior of Jump Items. This includes such fields as connection type, display size, and terminal type, among others.

Jump Clients Only

Set Passwords

Enables the user to password-protect Jump Clients.

Bypass Passwords

Enables the user to access password-protected Jump Clients without needing to know the password.