Roles
This article describes the available roles in RedCarbon, their permissions, and how to assign them to users.
Overview
RedCarbon uses a role-based access control (RBAC) system to manage user permissions. Each user is assigned a role that determines what actions they can perform and what data they can access within the platform.
Available Roles
-
Organization Admin: Has full administrative access to manage users, customers, groups, notification rules, email configurations, SLA policies, and executive report schedulers. Ideal for IT administrators and security team leads.
-
Analyst: Designed for security analysts who view, create, edit, and manage cases, contact customers, and generate reports. Analysts can be organized into three tiers (L1, L2, L3) with increasing assignment privileges. Ideal for SOC analysts and incident responders.
-
Viewer: Intended for end customers who can view their organization's cases, read updates, respond to analysts, and access the customer dashboard. Ideal for customer contacts and stakeholders.
Role Comparison Matrix
| Permission | Organization Admin | Analyst | Viewer |
|---|---|---|---|
| Manage Users | Yes | No | No |
| Configure Organization | Yes | No | No |
| Manage Customers | Yes | No | No |
| Manage Integrations | Yes | No | No |
| Configure SLA | Yes | No | No |
| Create/Edit Cases | No | Yes | No |
| Assign Cases | No | Yes (tier-based) | No |
| MSSP View | No | Yes | No |
| Respond to Analysts | No | No | Yes |
| Access Dashboards | Full | MSSP Dashboard | Customer Dashboard |
| Generate Reports | Yes | Yes | No |
Assigning Roles
To assign a role to a user:
- Navigate to
Organization Admin>Users. - Find the user you want to modify.
- Click
Set rolesnext to their name. - Select the new role from the dropdown menu.
- Click
Saveto apply the changes.
Users need to log out and log back in to see the changes.