Role based access control
Role Based Access Control (RBAC) allows users of Alcion to have fine-grained control over user permissions, providing them the ability to define permission boundaries for specific users.
Here are the key RBAC concepts.
- Each user can have one or more roles.
- Each role grants a set of permissions.
- A user can perform an operation if, and only if, at least one of their roles provides the required permission.
Predefined roles
Alcion supports several predefined roles that can be used to control the level of access for users. The sections below describe the currently supported roles and corresponding permissions when managing an Alcion tenant or the Alcion Partner Portal.
Tenant level roles
At the level of specific tenants, the operations and the access allowed by each role are:
| Operation | Admin | Backup Operator | Viewer |
|---|---|---|---|
| View resources and stats | ✅ | ✅ | ✅ |
| View activity | ✅ | ✅ | ✅ |
| Manage resource protection and initiate backups | ✅ | ✅ | ❌ |
| Manage default protection policies for new resources | ✅ | ✅ | ❌ |
| View incidents | ✅ | ✅ | ❌ |
| Browse backups | ✅ | ❌ | ❌ |
| Restore backups | ✅ | ❌ | ❌ |
| Export backups | ✅ | ❌ | ❌ |
| Request and cancel backup deletions | ✅ | ❌ | ❌ |
| View and update notification preferences | ✅ | ❌ | ❌ |
| Manage subscription / billing | ✅ | ❌ | ❌ |
| Manage users | ✅ | ❌ | ❌ |
| Manage partner access level | ✅ | ❌ | ❌ |
Partner portal roles
At the partner portal level, the operations and the access allowed by each role are:
| Operation | Admin | Tenant Operator | Viewer |
|---|---|---|---|
| View managed tenants and stats | ✅ | ✅ | ✅ |
| Access managed tenants | ✅ | ✅ | ❌ |
| Add/Remove managed tenants | ✅ | ❌ | ❌ |
| Manage partner subscription / billing | ✅ | ❌ | ❌ |
| Manage users | ✅ | ❌ | ❌ |
Users who have the Access Managed Tenants permission, currently will have full Admin permissions to that tenant.
When assigned to a user, the partner portal roles can optionally be scoped to all managed tenants or only to specific managed tenants. This allows Alcion partner administrators to align the access of their staff with specific tenants that they're responsible for.
The table below indicates the supported level of role scoping.
| Role | All tenants (not scoped) | Selected tenants |
|---|---|---|
| Admin | ✅ | ❌ |
| Tenant Operator | ✅ | ✅ |
| Viewer | ✅ | ❌ |
At least one role that can't be scoped is required when assigning roles to users. By default, this will be the Viewer role.