Roles and privileges

flowchart LR subgraph Users and authentication change_passwords manage_auth_integrations manage_users view_users end subgraph VPN users create_new_vpn_user_roles manage_vpn_users toggle_vpn_users view_vpn_user_log view_vpn_users end manage_vpn_users["Manage VPN users (manage_vpn_users)"] toggle_vpn_users["Grant access to VPN users (toggle_vpn_users)"] manage_vpn_users --> toggle_vpn_users view_vpn_user_log["View VPN user log (view_vpn_user_log)"] manage_vpn_users --> view_vpn_user_log create_new_vpn_user_roles["Add VPN user roles (create_new_vpn_user_roles)"] manage_vpn_users --> create_new_vpn_user_roles toggle_vpn_users["Grant access to VPN users (toggle_vpn_users)"] view_vpn_users["View VPN users (view_vpn_users)"] toggle_vpn_users --> view_vpn_users audit_log["View audit log (audit_log)"] view_vpn_user_log["View VPN user log (view_vpn_user_log)"] audit_log --> view_vpn_user_log discover_switches["Use switch discovery (discover_switches)"] manage_switches["Manage switches (manage_switches)"] discover_switches --> manage_switches full_system_settings_access["Full access to raw system settings (full_system_settings_access)"] manage_system_settings["Manage system settings (manage_system_settings)"] full_system_settings_access --> manage_system_settings manage_compliance_policies["Manage compliance policies (manage_compliance_policies)"] run_compliance_checks["Run compliance checks (run_compliance_checks)"] manage_compliance_policies --> run_compliance_checks manage_device_custom_port_config["Manage custom port configurations (manage_device_custom_port_config)"] view_device_port_config["View device port configurations (view_device_port_config)"] manage_device_custom_port_config --> view_device_port_config manage_device_profiles["Manage device profiles (manage_device_profiles)"] view_device_profiles["View device profiles (view_device_profiles)"] manage_device_profiles --> view_device_profiles manage_devices["Manage devices (manage_devices)"] view_devices["View devices (view_devices)"] manage_devices --> view_devices manage_firmware_updates["Manage firmware update schedules (manage_firmware_updates)"] view_firmware_updates["View firmware update schedule (view_firmware_updates)"] manage_firmware_updates --> view_firmware_updates manage_groups["Manage groups (manage_groups)"] view_groups_and_switches["View groups and switches (view_groups_and_switches)"] manage_groups --> view_groups_and_switches manage_l3_filters["Manage VLAN L3 filters (manage_l3_filters)"] view_l3_filters["View VLAN L3 filters (view_l3_filters)"] manage_l3_filters --> view_l3_filters manage_service_ports["Manage service ports (manage_service_ports)"] view_service_ports["View service ports (view_service_ports)"] manage_service_ports --> view_service_ports toggle_service_ports["Enable and disable service ports (toggle_service_ports)"] manage_service_ports --> toggle_service_ports view_service_port_log["View service port Log (view_service_port_log)"] manage_service_ports --> view_service_port_log manage_shared_templates["Managed template library (manage_shared_templates)"] edit_pdf_templates["Create and edit documentation templates (edit_pdf_templates)"] manage_shared_templates --> edit_pdf_templates manage_stages["Manage switch stages (manage_stages)"] update_switch_stage["Specify switch progress (stage) (update_switch_stage)"] manage_stages --> update_switch_stage manage_switches["Manage switches (manage_switches)"] manage_stages --> manage_switches manage_switches["Manage switches (manage_switches)"] view_groups_and_switches["View groups and switches (view_groups_and_switches)"] manage_switches --> view_groups_and_switches manage_users["Manage users (manage_users)"] view_users["Access user overview (view_users)"] manage_users --> view_users manage_vlans["Manage VLANs (manage_vlans)"] view_vlans["View VLANs (view_vlans)"] manage_vlans --> view_vlans syslog_export["Export syslog data (syslog_export)"] syslog_search["Search syslog data (syslog_search)"] syslog_export --> syslog_search tenant_transfer["Import and export full sites (tenant_transfer)"] manage_backups["Configure and create backups (manage_backups)"] tenant_transfer --> manage_backups create_tenants["Create sites (create_tenants)"] tenant_transfer --> create_tenants toggle_service_ports["Enable and disable service ports (toggle_service_ports)"] view_service_ports["View service ports (view_service_ports)"] toggle_service_ports --> view_service_ports view_general_network_grids["View general network overviews (view_general_network_grids)"] view_vlans["View VLANs (view_vlans)"] view_general_network_grids --> view_vlans view_groups_and_switches["View groups and switches (view_groups_and_switches)"] view_general_network_grids --> view_groups_and_switches view_devices["View devices (view_devices)"] view_general_network_grids --> view_devices view_device_profiles["View device profiles (view_device_profiles)"] view_general_network_grids --> view_device_profiles root["root (root)"] admin_console["Utilise admin console (admin_console)"] root --> admin_console audit_log["View audit log (audit_log)"] root --> audit_log change_passwords["Change other users' passwords (change_passwords)"] root --> change_passwords discover_switches["Use switch discovery (discover_switches)"] root --> discover_switches firewall_rules["Modify firewall rules (firewall_rules)"] root --> firewall_rules full_system_settings_access["Full access to raw system settings (full_system_settings_access)"] root --> full_system_settings_access import_deployment["Use deployment feature (import_deployment)"] root --> import_deployment ip_overrides["Override IP addresses (ip_overrides)"] root --> ip_overrides lock_devices["Lock and unlock device(s) (lock_devices)"] root --> lock_devices manage_appliances["Manage On-Site Appliances (manage_appliances)"] root --> manage_appliances manage_auth_integrations["Enable access to this site via external authentication providers (manage_auth_integrations)"] root --> manage_auth_integrations manage_compliance_policies["Manage compliance policies (manage_compliance_policies)"] root --> manage_compliance_policies manage_devices["Manage devices (manage_devices)"] root --> manage_devices manage_device_custom_port_config["Manage custom port configurations (manage_device_custom_port_config)"] root --> manage_device_custom_port_config manage_device_profiles["Manage device profiles (manage_device_profiles)"] root --> manage_device_profiles manage_devices["Manage devices (manage_devices)"] root --> manage_devices manage_firmware_updates["Manage firmware update schedules (manage_firmware_updates)"] root --> manage_firmware_updates manage_groups["Manage groups (manage_groups)"] root --> manage_groups manage_l3_filters["Manage VLAN L3 filters (manage_l3_filters)"] root --> manage_l3_filters manage_network_graphs["Manage network graphs (manage_network_graphs)"] root --> manage_network_graphs manage_service_ports["Manage service ports (manage_service_ports)"] root --> manage_service_ports manage_shared_templates["Managed template library (manage_shared_templates)"] root --> manage_shared_templates manage_stages["Manage switch stages (manage_stages)"] root --> manage_stages manage_user_defined_intents["Manage user-defined actions / buttons (manage_user_defined_intents)"] root --> manage_user_defined_intents manage_users["Manage users (manage_users)"] root --> manage_users manage_vlans["Manage VLANs (manage_vlans)"] root --> manage_vlans manage_vpn_users["Manage VPN users (manage_vpn_users)"] root --> manage_vpn_users port_config_ai["Use experimental AI assistance for port configuration (port_config_ai)"] root --> port_config_ai public_api["Use all API endpoints (public_api)"] root --> public_api retrieve_vault_passwords["Retrieve vault passwords (retrieve_vault_passwords)"] root --> retrieve_vault_passwords syslog_export["Export syslog data (syslog_export)"] root --> syslog_export tenant_transfer["Import and export full sites (tenant_transfer)"] root --> tenant_transfer unguided["Manually manipulate device relations (unguided mode) (unguided)"] root --> unguided view_general_network_grids["View general network overviews (view_general_network_grids)"] root --> view_general_network_grids view_network_graphs["View network graphs (view_network_graphs)"] root --> view_network_graphs classDef nodeStyle padding:2px,fill:#389ed8,stroke:#2e6c84,color:#fff,stroke-width:2px class admin_console,audit_log,change_passwords,create_new_vpn_user_roles,create_tenants,discover_switches,edit_pdf_templates,firewall_rules,full_system_settings_access,import_deployment,ip_overrides,lock_devices,manage_appliances,manage_auth_integrations,manage_backups,manage_compliance_policies,manage_devices,manage_device_custom_port_config,manage_device_profiles,manage_devices,manage_firmware_updates,manage_groups,manage_l3_filters,manage_network_graphs,manage_service_ports,manage_shared_templates,manage_stages,manage_switches,manage_system_settings,manage_user_defined_intents,manage_users,manage_vlans,manage_vpn_users,port_config_ai,public_api,retrieve_vault_passwords,run_compliance_checks,syslog_export,syslog_search,tenant_transfer,toggle_service_ports,toggle_vpn_users,unguided,update_switch_stage,view_device_port_config,view_device_profiles,view_devices,view_firmware_updates,view_general_network_grids,view_groups_and_switches,view_l3_filters,view_network_graphs,view_service_port_log,view_service_ports,view_users,view_vlans,view_vpn_user_log,view_vpn_users nodeStyle