Role-Based Access Control

P0 supports role-based access control to configure least-privileged access to your users.

Global roles

Owner

Owners can add integrations and alter settings.

Roles for Just-In-Time Access

Requestor

Every user that can log in to P0 is a Requestor. This is the default baseline role for your users.

Approver

Approvers can approve access requests.

The Approver role is only in use in either of these cases:

  1. There are no routing rules in place

  2. There are routing rules in place and they explicitly reference the P0 Approver role

See Request Routing.

Roles for IAM Assessment

Assessment Users

Assessment Users can run, manage, and view IAM assessments.

Assessment Viewer

Assessment Viewers can view IAM assessments.

Last updated