Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
872
Views
1
Helpful
0
Replies

CSCvm75893 - FMC provide users with read only access to FMC tabs

russell.drake
Level 1
Level 1

‎10-23-2018 11:53 PM

Hiya,

 

I have also come across this and contacted Cisco TAC - they advised a workaround using the "Security Approver" role, please be advised though that this unfortunately also allows the user to commit a change (hence the Approver part).

 

I found that RO access to Devices/Policy and Objects + monitoring could be achieved through the following;

- Add user to Security Analyst

- Create additional RO User role and also assign this to the user

 

On the new RO User role select as per the attached.

 

I tried editing things, such as adding a firewall to an existing device group and got blocked - so seems to work well.

 

Hope that helps.

 

1 person had this problem
Labels:
Preview file
18 KB
0 Replies 0
Customers Also Viewed These Support Documents