system accprofile
Use this command to configure access profiles that, in conjunction with the domain to which an administrator account is assigned, govern which areas of the web-based manager and CLI that an administrator can access, and whether or not they have the permissions necessary to change the configuration or otherwise modify items in each area.
Syntax
config system accprofile
edit <profile_name>
config menuitem
edit <name>
set permission {custom | none | read | read-write}
set content-detail {enable | disable}
next
end
set admin {none | read | read-write}
set archive {none | read | read-write}
set block-safe-list {none | read | read-write}
set greylist {none | read | read-write}
set log {none | read | read-write}
set ms365 {none | read | read-write}
set others {none | read | read-write}
set personal-quarantine {none | read | read-write}
set policy {none | read | read-write}
set privilege-level {high | low | medium}
set queue {none | read | read-write}
set system {none | read | read-write}
set system-diagnostics {enable | disable}
set system-quarantine {none | read | read-write}
end
Variable |
Description |
Default |
Enter the name of the access profile. |
|
|
<name> |
Enter the name of the menu item you wish to configure administrative permissions:
|
|
permission {custom | none | read | read-write} |
Apply a permission across all access control configurations. |
none |
content-detail {enable | disable} |
Note that this is only available for archive_grp. |
enable |
For the admin configuration, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
For the archiving configuration, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
For the block and safelist configuration, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
Access permission for granular control. |
all |
|
For the greylist configuration, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
For the log configuration, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
For the Microsoft 365 configuration, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
For the rest of the configurations except policy, block-safe-list, and quarantine, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
For personal quarantine, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
For the policy configuration, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
Set the access profile's privilege level. Any administrators assigned a |
medium |
|
For the queue configuration, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
For system settings, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |
|
Enable or disable permission to run system diagnostic commands. |
enable |
|
For system quarantine, enter the permissions that will be granted to administrator accounts associated with this access profile. |
none |