Create a Role

You are here: Device Administration > Users & Roles > Roles.

To create a role:

Click the add icon (+) on the upper right side of the Roles page.

The Create Role page appears.
Complete the configuration according to the guidelines provided in Table 1.
Click OK to save the newly added role. If you want to discard your changes, click Cancel.

After you create roles, go to Device Administration > Users & Roles > Users and assign them to users.

Table 1: Fields on the Create Role Page
Field	Action
Name	Enter a unique string that consists of alphanumeric characters, hyphens, and underscores; 64-character maximum.
Role scope	Note: This option is only available on the SRX Series Firewalls that support multi-tenancy. Select the scope of the role: Default—Creates the role to root logical systems. Tenant—Creates the role to tenant profiles. Logical System—Creates the role to logical system profiles.
Tenant	Select the tenant profile from the list for which you want to assign the role. Note: This option is only available if you select Tenant in the Role scope.
Logical System	Select the logical system profile from the list for which you want to assign the role. Note: This option is only available if you select Logical System in the Role scope.
Access Privileges	Select one or more privilege types (Full Access, Read-Only Access, or No Access) to assign the role for the specified actions and menus. A role must have at least one access privilege. Note: By default, Full Access privilege is selected. You can select: Read-Only Access if you want to assign the access permissions as read-only. No Access if you do not want to assign any access permissions.