This section describes how the SSH Tectia Manager administrators can be grouped by their roles. A Superusers group is created automatically during the SSH Tectia Manager installation, and the superusers create the other admin groups manually, according to need.

The team responsible for planning the SSH Tectia deployment through SSH Tectia Manager should also plan the allocation of management responsibilities according to the processes and organization of the company's IT environment. The superusers can then create the corresponding admin groups with relevant rights.

SSH Tectia Manager offers flexible options for defining the administrator roles and rights. Each administrator is created an administrator account into SSH Tectia Manager, and the accounts are assigned to admin groups. Permissions to perform actions are given to the admin groups. An administrator may be a member of any number of groups, and to have any rights at all, an administrator must be a member of at least one admin group.

Below we describe a typical setup of access rights with roles for operators, configuration administrators, and auditors. Note that this is an example, and you should design the admin groups and their rights to follow the security policy of your the organization.