To provide organizations with greater security and "least privilege" access control, the platform offers distinct roles for content management: Creators and Managers.
This structure ensures that users have the necessary permissions to build content without needing full administrative rights, while Managers retain oversight to maintain the organization's content library.
The Difference Between Creators and Managers
The primary difference between these roles lies in whose content they can edit and delete.
- Creator Roles (Least Privilege): These roles are designed for authorship. A Creator can create new content (such as scenarios, labs, or exercises) but can only edit, publish, or delete content that they personally created. They cannot modify content created by other users.
- Manager Roles (High Privilege): These roles are designed for oversight. A Manager has all the capabilities of a Creator, but they can also view, edit, delete, and publish content created by anyone in the organization. This allows Managers to assist with drafts, audit content, or manage items if the original author leaves the organization.
Role Examples by Content Type
The following table outlines the specific Creator and Manager roles available for different content types on the platform.
| Content Type | Creator Role Can manage their own content only | Manager Role Can manage all content in the org |
| Custom Labs, Collections & Career Paths | Lab Creator Creates custom labs, collections, and career paths. Can only edit/delete items they authored. | Lab Manager Can view, edit, and delete all custom labs, collections, and career paths across the organization. |
| Crisis Sim Scenarios | Crisis Sim Scenario Creator Creates, edits, and publishes their own scenarios only. | Crisis Sim Manager Can create, manage, and assign exercises and view reports for the organization. |
| Workforce Scenarios | Workforce Scenario Creator Creates and publishes their own scenarios only. | Workforce Manager Can create, manage, and assign workforce exercises, and create custom content for the organization. |
| Cyber Ranges | Cyber Ranges Creator Has access to manage specific Cyber Ranges. | Cyber Ranges Manager Can create, manage, and view all Cyber Ranges. |
When to assign a Manager role
We recommend limiting Manager roles to a very small number of users, only when you require someone to oversee, edit, or clean up content created by anybody. The Creator role is recommended for most users to reduce risk of accidental edits or deletions of each other’s work.
Comments
0 comments
Article is closed for comments.