Title here
Summary here
Role Reference
Role Reference (Complete Matrix)
The following table maps every significant action in the system to the roles that can perform it. Actions are grouped by feature area.
| Action | Viewer | Analyst | Approver | Admin |
|---|---|---|---|---|
| Dashboard | ||||
| View dashboard KPI cards | Yes | Yes | Yes | Yes |
| View recent activity | Yes | Yes | Yes | Yes |
| Findings | ||||
| View findings list | Yes | Yes | Yes | Yes |
| View finding detail | Yes | Yes | Yes | Yes |
| Create finding (manual) | No | Yes | Yes | Yes |
| Create finding (Report Finding page action) | Yes* | Yes | Yes | Yes |
| Update finding status | No | Yes | Yes | Yes |
| Import findings via CSV | No | Yes | Yes | Yes |
| Export findings as PDF | Yes | Yes | Yes | Yes |
| Bulk update finding status | No | Yes | Yes | Yes |
| Create Jira issue from finding | No | Yes | Yes | Yes |
| Cases | ||||
| View cases list | Yes | Yes | Yes | Yes |
| View case detail | Yes | Yes | Yes | Yes |
| Create case | No | Yes | Yes | Yes |
| Update case status | No | Yes | Yes | Yes |
| Assign case | No | Yes | Yes | Yes |
| Add comment to case | No | Yes | Yes | Yes |
| Link finding to case | No | Yes | Yes | Yes |
| Bulk update cases | No | Yes | Yes | Yes |
| Export case evidence bundle | No | Yes | Yes | Yes |
| Export cases as PDF | Yes | Yes | Yes | Yes |
| Create Jira issue from case | No | Yes | Yes | Yes |
| Request risk exception | No | Yes | Yes | Yes |
| Approve risk exception | No | No | Yes | Yes |
| Revoke risk exception | No | No | No | Yes |
| Access Explorer | ||||
| Analyze page access | Yes | Yes | Yes | Yes |
| View exposure score | Yes | Yes | Yes | Yes |
| View principal list (groups, users) | Yes | Yes | Yes | Yes |
| Expand group to individual users | No | Yes | Yes | Yes |
| Explain access for a specific user | No | Yes | Yes | Yes |
| Invalidate access cache | No | Yes | Yes | Yes |
| Scanning | ||||
| View scan status and history | Yes | Yes | Yes | Yes |
| Start content scan (full / incremental / space) | No | Yes | Yes | Yes |
| Pause / abort scan | No | Yes | Yes | Yes |
| View scan hit details | Yes | Yes | Yes | Yes |
| Alerts | ||||
| View alert rules | Yes | Yes | Yes | Yes |
| Create/edit/delete alert rules | No | No | No | Yes |
| View triggered alerts | Yes | Yes | Yes | Yes |
| Acknowledge alert | No | Yes | Yes | Yes |
| Resolve alert | No | Yes | Yes | Yes |
| Audit Log | ||||
| View audit log | Yes | Yes | Yes | Yes |
| Filter audit log | Yes | Yes | Yes | Yes |
| Export audit log | Yes | Yes | Yes | Yes |
| Notifications | ||||
| View own notifications | Yes | Yes | Yes | Yes |
| Mark notification read/dismissed | Yes | Yes | Yes | Yes |
| Mark all notifications read | Yes | Yes | Yes | Yes |
| Admin Settings | ||||
| Access Admin Settings page | No | No | No | Yes |
| Assign/change/remove roles | No | No | No | Yes |
| Set classifications | No | No | No | Yes |
| Remove classifications | No | No | No | Yes |
| Enable/disable detectors | No | No | No | Yes |
| Create/edit/delete custom detectors | No | No | No | Yes |
| Update score weights | No | No | No | Yes |
| Update SLA policy | No | No | No | Yes |
| Configure access expansion | No | No | No | Yes |
| Manage notification channels | No | No | No | Yes |
| Configure Jira integration | No | No | No | Yes |
| Update retention policy | No | No | No | Yes |
| Run retention purge | No | No | No | Yes |
| Rebuild entity count cache | No | No | No | Yes |
| View job health / run history | No | No | No | Yes |
*Any authenticated Confluence user can use the “Report Security Finding” page action regardless of Aegis role.