Users, roles, & permissions frequently asked questions

This page concerns user management and user account roles and permissions.

How do I find out what my permissions are in Nexpose?

Click the link for your user name, which appears near the upper right corner of every page of the Nexpose Security Console Web interface. Nexpose displays the User preferences wizard for your account. Click through it to view which sites and asset groups you have access to. If you are unsure of what Nexpose functions you are able to perform, such as running scans, consult your Nexpose global administrator.

Why do I see "Nexpose user" in my authentication options for creating user accounts if I'm using an LDAP server to authenticate users?

The "Nexpose user" authentication option represents the default, built-in Nexpose method for authenticating users. Even if your organization has configured a separate user authentication service, such as LDAP/Active Directories (AD), you still have the option to authenticate a given user with the built-in Nexpose service.

Can I edit permissions for a preset Nexpose role?

No. You can only change permissions for a customized role.

Can any user with a customized Nexpose role have access to administrative functions?

No. Only a user with a global administrator role can access administrative functions, such as configuring the Nexpose Security Console settings, creating user accounts, or performing maintenance tasks. The global administrator role is a preset role within Nexpose.