The following table shows which Application Security roles have permission to perform which OpenText ScanCentral DAST-related tasks.
| Role | Permissions |
|---|
View-Only | Restrictions: - Users see only the scans for application to which they are assigned
- Users see only sensor pool assignment for the applications to which they are assigned
|
| Security Lead | - View OpenText ScanCentral DAST data
- Create, run, change, and delete scans, schedules, and settings
- Manage pools and sensors
Download artifacts Run scans from existing templates and base settings Manage deny intervals, application priority level, and retention policy Manage global restrictions, restricted scan settings, and private data settings Manage key stores and artifacts repositories
Restrictions: - Users can cancel only those scan requests for application versions to which they are assigned.
- Users can assign only application versions to which they are assigned to sensor pools.
|
| Manager | - View OpenText ScanCentral DAST data
Manage pools and sensors
Restrictions: - Users cannot update scan-related data
- Users can cancel only those scan requests for application versions to which they are assigned.
- Users can assign only application versions to which they are assigned to sensor pools.
|
| Developer | - View OpenText ScanCentral DAST data
- Run scans from existing templates and base settings
- Download artifacts
|
| Application Security Tester | |
See Also
Viewing permission information for Application Security roles