Use these tables to compare standard admin permissions for Zilla features, settings, and tasks.
Besides the permissions shown in tables, there are also these roles in the Zilla platform:
ITSM Service - This is an internal Zilla service account role that is used to connect with ITSM providers for access requests and provisioning ticket creation.
ZUS service - This is an internal Zilla service account role that is used to connect to a cloud instance of Zilla Universal Sync.
(default) - Any user that can access Zilla would get an account with (default) permission. The presence of an account enables an user to just see the tasks that are assigned to them and complete the tasks. The User role is implicitly assigned to a user once they are authenticated by the SSO provider.
Super admin and admins can perform all admin tasks for an org and have full management access.
Tenant-wide settings
Permission | Super Admin / Admin | Read Only Admin | App Admin | Compliance Admin |
---|---|---|---|---|
View and update system settings | ✔️ | |||
View users list | ✔️ | ✔️ | ✔️ | ✔️ |
View tenant-wide open tasks | ✔️ | ✔️ | ||
View saved searches | ✔️ | ✔️ | ✔️ 1 | |
Take action on search (create ticket, email, etc.) | ✔️ | ✔️ 1 | ||
Download search result | ✔️ | ✔️ | ✔️ 1 | |
Create and save new search | ✔️ | ✔️ 1 |
nly for applications the user is assigned an ownership role
Application management
Permission | Super Admin / Admin | Read Only Admin | App Admin | Compliance Admin |
---|---|---|---|---|
Manage applications list | ✔️ | |||
Download full application list | ✔️ | ✔️ | ||
Configure application integration | ✔️ | ✔️ 1 | ||
Trigger new on-demand sync | ✔️ | ✔️ | ✔️ 1 | |
View and edit application profile | ✔️ | ✔️ 1 | ||
View and edit Access Request Summary | ✔️ | ✔️ 1 | ||
View and edit available permission | ✔️ | ✔️ 1 | ||
Download available permission | ✔️ | ✔️ | ✔️ 1 | |
View and Edit security setting | ✔️ | ✔️ 1 | ||
View and edit usage profile | ✔️ | ✔️ 1 | ||
Edit account mapping | ✔️ | ✔️ 1 | ||
Download account | ✔️ | ✔️ | ✔️ 1 | |
Download permission | ✔️ | ✔️ | ✔️ 1 | |
Download group (if applicable) | ✔️ | ✔️ | ✔️ 1 | |
Download Resource (if applicable) | ✔️ | ✔️ | ✔️ 1 | |
Download integration (if applicable) | ✔️ | ✔️ | ✔️ 1 | |
Download findings (if applicable) | ✔️ | ✔️ | ✔️ 1 |
Only for applications the user is assigned an ownership role
Campaign management
Permission | Super Admin / Admin | Read Only Admin | App Admin | Compliance Admin |
---|---|---|---|---|
View existing campaign | ✔️ | ✔️ | ✔️ | |
Download campaign evidence package | ✔️ | ✔️ | ✔️ | |
Regenerate campaign report | ✔️ | ✔️ | ✔️ | |
Create new campaign | ✔️ | ✔️ | ||
Configure new campaign | ✔️ | ✔️ | ||
Launch new campaign | ✔️ | ✔️ | ||
Complete readiness check task | ✔️ | ✔️ 1 |
Only for applications in which they have been assigned a campaign readiness task.
Provisioning management
Permission | Super Admin / Admin | Read Only Admin | App Admin | Compliance Admin |
---|---|---|---|---|
View requestable | ✔️ | ✔️ | ✔️ 1 | |
Edit requestable | ✔️ | ✔️ 1 | ||
View application access request config | ✔️ | ✔️ | ✔️ 1 | |
Edit application access request config | ✔️ | ✔️ 1 | ||
View and download access request | ✔️ | ✔️ | ✔️ 1 | |
Create policy | ✔️ |
Only for applications the user is assigned an ownership role
Security management
Permission | Super Admin / Admin | Read Only Admin | App Admin | Compliance Admin |
---|---|---|---|---|
View security dashboard | ✔️ | ✔️ | ||
View finding | ✔️ | ✔️ | ✔️ 1 | |
Mute / unmute security finding | ✔️ | ✔️ 1 | ||
Take action on security finding | ✔️ | ✔️ 1 | ||
Download security finding | ✔️ | ✔️ | ✔️ 1 | |
View security policy | ✔️ | ✔️ | ||
Edit security policy | ✔️ | |||
Create custom policy | ✔️ |
Only for applications the user is assigned an ownership role