The Cyolo platform includes three sets of roles, each with different levels of authorization. The Admin Portal displays pages and data based on the assigned role of the user.

• Admin
• Supervision
• Auditor

These are detailed below.

Admin

The five Admin roles available are:

Super Admin

• Permissions: Read-write access to all resources.
• Capabilities: Full administrative control, including the ability to assign roles to other identities.

Operation Admin

• Permissions: Read-write access to most resources - except admin roles and integrations.
• Capabilities: Can manage operational tasks without altering admin roles or integrations.

Read-Only Admin

• Permissions: Read-only access to most resources.
• Capabilities: Can view resources without making changes.

Helpdesk Admin

• Permissions: Read-write access to identities and read-only access to some resources.
• Capabilities: Can assist with identity management and provide support with limited resource access.

Log Admin

• Permissions: Can only view logs.
• Capabilities: Can monitor and review system logs, without access to other resources.

Supervision

Supervision includes three roles - Approver, Active Supervisor, and Observer Supervisor.

• Approver: Can approve or deny access requests.
• Active Supervisor: Can join sessions of users, view their screens, and interact.
• Observer Supervisor: Can join sessions of users and view their screens, but cannot interact.

Note: All three Supervision roles can also terminate sessions.

Auditor

Auditors: Can only play back session recordings.

For additional information on roles, see the section: Identities, Roles and Rules.