Device access

You can create role-based access to the firewall for administrators.

The default set of profiles specifies privileges for a super administrator and for some common administrator roles. You can also create custom profiles and specify the privileges.

To edit a profile, click Edit Edit button.

Table 1. Default profiles




Super administrator with full privileges. Can create administrators with restricted or full privileges.

Audit admin

Has read-write privileges to logs and reports.

Crypto admin

Has read-write privileges to configure security certificates.


Has read-only privileges to the auxiliary device, if high availability is configured.

Security admin

Has read-write privileges to all features, except profiles, logs, and reports.

Tip To delete a profile, make sure that it isn't assigned to an administrator.