Fortinet white logo
Fortinet white logo

Appendix - Access Permissions

Appendix A - Access Permissions

The tables below list the permission IDs for each component.

Provider

Customer

Provider

Component Permission ID Permission
audit 15 Read/Write
audit 14 Read
dashboard 1 Read
dashboard 2 Read/Write
devices 8 CUSTOM
devices 7 Read/Write
devices 6 Read
devices: fortianalyzer 19 Read/Write
devices: fortianalyzer 18 Read
devices: fortimanager 17 Read/Write
devices: fortimanager 16 Read
notifications 13 Read/Write
notifications 12 Read
organizations 4 Read/Write
organizations 3 Read
organizations 5 CUSTOM
organizations: adoms 36 Read/Write
organizations: adoms 35 Read
organizations: authentication 41 Read
organizations: authentication 42 Read/Write
organizations: contact 34 Read/Write
organizations: contact 33 Read
organizations: general 32 Read/Write
organizations: general 31 Read
organizations: reports 43 Read
organizations: reports 44 Read/Write
organizations: sites 38 Read/Write
organizations: sites 37 Read
organizations: users 39 Read
organizations: users 40 Read/Write
system 10 Read/Write
system 9 Read
system 11 CUSTOM
system: additional_resources 30 Read/Write
system: additional_resources 29 Read
system: admins 26 Read/Write
system: admins 25 Read
system: profiles 24 Read/Write
system: profiles 23 Read
system: settings 22 CUSTOM
system: settings 21 Read/Write
system: settings 20 Read
system: settings: authentication 48 Read/Write
system: settings: authentication 47 Read
system: settings: blocked_hosts 50 Read/Write
system: settings: blocked_hosts 49 Read
system: settings: cluster 52 Read/Write
system: settings: cluster 51 Read
system: settings: email 53 Read
system: settings: email 54 Read/Write
system: settings: general 46 Read/Write
system: settings: general 45 Read
system: settings: other 55 Read
system: settings: other 56 Read/Write
system: theme 27 Read
system: theme 28 Read/Write

Customer

Component Permission ID Permission
additional_resources 77 Read/Write
additional_resources 76 Read
antivirus 203 Read/Write
antivirus 202 Read
customer_audit 75 Read/Write
customer_audit 74 Read
insights 57 Read
insights 58 Read/Write
insights 59 CUSTOM
insights: dashboard 78 Read
insights: dashboard 79 Read/Write
insights: health 82 Read
insights: health 83 Read/Write
insights: logs 84 Read
insights: logs 85 Read/Write
insights: logs 86 CUSTOM
insights: logs: application_control 207 Read/Write
insights: logs: application_control 206 Read
insights: logs: dns 205 Read/Write
insights: logs: dns 204 Read
insights: logs: event 210 Read
insights: logs: event 211 Read/Write
insights: logs: intrusion_prevention 199 Read/Write
insights: logs: intrusion_prevention 198 Read
insights: logs: sandbox 201 Read/Write
insights: logs: sandbox 200 Read
insights: logs: traffic 197 Read/Write
insights: logs: traffic 196 Read
insights: logs: web_filter 208 Read
insights: logs: web_filter 209 Read/Write
insights: monitor 80 Read
insights: monitor 81 Read/Write
reports 72 Read
reports 73 Read/Write
sdwan 62 CUSTOM
sdwan 60 Read
sdwan 61 Read/Write
sdwan: configuration 89 Read
sdwan: configuration 90 Read/Write
sdwan: dashboard 88 Read/Write
sdwan: dashboard 87 Read
security 63 Read
security 64 Read/Write
security 65 CUSTOM
security: network 99 CUSTOM
security: network 97 Read
security: network 98 Read/Write
security: network: certificate 217 Read/Write
security: network: certificate 216 Read
security: network: dhcp_server 195 Read/Write
security: network: dhcp_server 194 Read
security: network: ipsec_phase_1 188 Read
security: network: ipsec_phase_1 189 Read/Write
security: network: ipsec_phase_2 190 Read
security: network: ipsec_phase_2 191 Read/Write
security: network: static_route 193 Read/Write
security: network: static_route 192 Read
security: objects 95 Read/Write
security: objects 96 CUSTOM
security: objects 94 Read
security: objects: address 144 Read
security: objects: address 145 Read/Write
security: objects: antivirus_profile 156 Read
security: objects: antivirus_profile 157 Read/Write
security: objects: application_control 158 Read
security: objects: application_control 159 Read/Write
security: objects: file_filter_profile 162 Read
security: objects: file_filter_profile 163 Read/Write
security: objects: intrusion_prevention 164 Read
security: objects: intrusion_prevention 165 Read/Write
security: objects: local_category 168 Read
security: objects: local_category 169 Read/Write
security: objects: profile: group 219 Read/Write
security: objects: profile: group 218 Read
security: objects: rating_overrides 171 Read/Write
security: objects: rating_overrides 170 Read
security: objects: schedule 150 Read
security: objects: schedule 151 Read/Write
security: objects: service 152 Read
security: objects: service 153 Read/Write
security: objects: ssl: ssh: inspection 214 Read
security: objects: ssl: ssh: inspection 215 Read/Write
security: objects: user 178 Read
security: objects: user 179 Read/Write
security: objects: user_groups 180 Read
security: objects: user_groups 181 Read/Write
security: objects: video_filter 175 Read/Write
security: objects: video_filter 174 Read
security: objects: virtual_ip 154 Read
security: objects: virtual_ip 155 Read/Write
security: objects: web_filter_profile 167 Read/Write
security: objects: web_filter_profile 166 Read
security: policy 91 Read
security: policy 92 Read/Write
security: policy 93 CUSTOM
security: policy: authentication_policy 122 Read
security: policy: authentication_policy 123 Read/Write
security: policy: central_dnat 112 Read
security: policy: central_dnat 113 Read/Write
security: policy: central_snat 110 Read
security: policy: central_snat 111 Read/Write
security: policy: firewall_policy 143 Read/Write
security: policy: firewall_policy 142 Read
security: policy: ipv4_dos_policy 132 Read
security: policy: ipv4_dos_policy 133 Read/Write
security: policy: ipv4_interface_policy 137 Read/Write
security: policy: ipv4_interface_policy 136 Read
security: policy: ipv4_local_in_policy 128 Read
security: policy: ipv4_local_in_policy 129 Read/Write
security: policy: ipv4_multicast_policy 125 Read/Write
security: policy: ipv4_multicast_policy 124 Read
security: policy: ipv6_central_dnat 114 Read
security: policy: ipv6_central_dnat 115 Read/Write
security: policy: ipv6_dos_policy 135 Read/Write
security: policy: ipv6_dos_policy 134 Read
security: policy: ipv6_interface_policy 138 Read
security: policy: ipv6_interface_policy 139 Read/Write
security: policy: ipv6_local_in_policy 131 Read/Write
security: policy: ipv6_local_in_policy 130 Read
security: policy: ipv6_multicast_policy 127 Read/Write
security: policy: ipv6_multicast_policy 126 Read
security: policy: nat46_policy 119 Read/Write
security: policy: nat46_policy 118 Read
security: policy: nat64_policy 117 Read/Write
security: policy: nat64_policy 116 Read
security: policy: proxy_policy 120 Read
security: policy: proxy_policy 121 Read/Write
security: policy: security_policy 108 Read
security: policy: security_policy 109 Read/Write
security: policy: traffic_shaping_policy 141 Read/Write
security: policy: traffic_shaping_policy 140 Read
security: routing 212 Read
security: routing 213 Read/Write
switch 66 Read
switch 67 Read/Write
switch 68 CUSTOM
switch: configuration 102 Read
switch: configuration 103 Read/Write
switch: monitoring 100 Read
switch: monitoring 101 Read/Write
wifi 71 CUSTOM
wifi 70 Read/Write
wifi 69 Read
wifi: configuration 106 Read
wifi: configuration 107 Read/Write
wifi: monitoring 104 Read
wifi: monitoring 105 Read/Write

Appendix - Access Permissions

Appendix A - Access Permissions

The tables below list the permission IDs for each component.

Provider

Customer

Provider

Component Permission ID Permission
audit 15 Read/Write
audit 14 Read
dashboard 1 Read
dashboard 2 Read/Write
devices 8 CUSTOM
devices 7 Read/Write
devices 6 Read
devices: fortianalyzer 19 Read/Write
devices: fortianalyzer 18 Read
devices: fortimanager 17 Read/Write
devices: fortimanager 16 Read
notifications 13 Read/Write
notifications 12 Read
organizations 4 Read/Write
organizations 3 Read
organizations 5 CUSTOM
organizations: adoms 36 Read/Write
organizations: adoms 35 Read
organizations: authentication 41 Read
organizations: authentication 42 Read/Write
organizations: contact 34 Read/Write
organizations: contact 33 Read
organizations: general 32 Read/Write
organizations: general 31 Read
organizations: reports 43 Read
organizations: reports 44 Read/Write
organizations: sites 38 Read/Write
organizations: sites 37 Read
organizations: users 39 Read
organizations: users 40 Read/Write
system 10 Read/Write
system 9 Read
system 11 CUSTOM
system: additional_resources 30 Read/Write
system: additional_resources 29 Read
system: admins 26 Read/Write
system: admins 25 Read
system: profiles 24 Read/Write
system: profiles 23 Read
system: settings 22 CUSTOM
system: settings 21 Read/Write
system: settings 20 Read
system: settings: authentication 48 Read/Write
system: settings: authentication 47 Read
system: settings: blocked_hosts 50 Read/Write
system: settings: blocked_hosts 49 Read
system: settings: cluster 52 Read/Write
system: settings: cluster 51 Read
system: settings: email 53 Read
system: settings: email 54 Read/Write
system: settings: general 46 Read/Write
system: settings: general 45 Read
system: settings: other 55 Read
system: settings: other 56 Read/Write
system: theme 27 Read
system: theme 28 Read/Write

Customer

Component Permission ID Permission
additional_resources 77 Read/Write
additional_resources 76 Read
antivirus 203 Read/Write
antivirus 202 Read
customer_audit 75 Read/Write
customer_audit 74 Read
insights 57 Read
insights 58 Read/Write
insights 59 CUSTOM
insights: dashboard 78 Read
insights: dashboard 79 Read/Write
insights: health 82 Read
insights: health 83 Read/Write
insights: logs 84 Read
insights: logs 85 Read/Write
insights: logs 86 CUSTOM
insights: logs: application_control 207 Read/Write
insights: logs: application_control 206 Read
insights: logs: dns 205 Read/Write
insights: logs: dns 204 Read
insights: logs: event 210 Read
insights: logs: event 211 Read/Write
insights: logs: intrusion_prevention 199 Read/Write
insights: logs: intrusion_prevention 198 Read
insights: logs: sandbox 201 Read/Write
insights: logs: sandbox 200 Read
insights: logs: traffic 197 Read/Write
insights: logs: traffic 196 Read
insights: logs: web_filter 208 Read
insights: logs: web_filter 209 Read/Write
insights: monitor 80 Read
insights: monitor 81 Read/Write
reports 72 Read
reports 73 Read/Write
sdwan 62 CUSTOM
sdwan 60 Read
sdwan 61 Read/Write
sdwan: configuration 89 Read
sdwan: configuration 90 Read/Write
sdwan: dashboard 88 Read/Write
sdwan: dashboard 87 Read
security 63 Read
security 64 Read/Write
security 65 CUSTOM
security: network 99 CUSTOM
security: network 97 Read
security: network 98 Read/Write
security: network: certificate 217 Read/Write
security: network: certificate 216 Read
security: network: dhcp_server 195 Read/Write
security: network: dhcp_server 194 Read
security: network: ipsec_phase_1 188 Read
security: network: ipsec_phase_1 189 Read/Write
security: network: ipsec_phase_2 190 Read
security: network: ipsec_phase_2 191 Read/Write
security: network: static_route 193 Read/Write
security: network: static_route 192 Read
security: objects 95 Read/Write
security: objects 96 CUSTOM
security: objects 94 Read
security: objects: address 144 Read
security: objects: address 145 Read/Write
security: objects: antivirus_profile 156 Read
security: objects: antivirus_profile 157 Read/Write
security: objects: application_control 158 Read
security: objects: application_control 159 Read/Write
security: objects: file_filter_profile 162 Read
security: objects: file_filter_profile 163 Read/Write
security: objects: intrusion_prevention 164 Read
security: objects: intrusion_prevention 165 Read/Write
security: objects: local_category 168 Read
security: objects: local_category 169 Read/Write
security: objects: profile: group 219 Read/Write
security: objects: profile: group 218 Read
security: objects: rating_overrides 171 Read/Write
security: objects: rating_overrides 170 Read
security: objects: schedule 150 Read
security: objects: schedule 151 Read/Write
security: objects: service 152 Read
security: objects: service 153 Read/Write
security: objects: ssl: ssh: inspection 214 Read
security: objects: ssl: ssh: inspection 215 Read/Write
security: objects: user 178 Read
security: objects: user 179 Read/Write
security: objects: user_groups 180 Read
security: objects: user_groups 181 Read/Write
security: objects: video_filter 175 Read/Write
security: objects: video_filter 174 Read
security: objects: virtual_ip 154 Read
security: objects: virtual_ip 155 Read/Write
security: objects: web_filter_profile 167 Read/Write
security: objects: web_filter_profile 166 Read
security: policy 91 Read
security: policy 92 Read/Write
security: policy 93 CUSTOM
security: policy: authentication_policy 122 Read
security: policy: authentication_policy 123 Read/Write
security: policy: central_dnat 112 Read
security: policy: central_dnat 113 Read/Write
security: policy: central_snat 110 Read
security: policy: central_snat 111 Read/Write
security: policy: firewall_policy 143 Read/Write
security: policy: firewall_policy 142 Read
security: policy: ipv4_dos_policy 132 Read
security: policy: ipv4_dos_policy 133 Read/Write
security: policy: ipv4_interface_policy 137 Read/Write
security: policy: ipv4_interface_policy 136 Read
security: policy: ipv4_local_in_policy 128 Read
security: policy: ipv4_local_in_policy 129 Read/Write
security: policy: ipv4_multicast_policy 125 Read/Write
security: policy: ipv4_multicast_policy 124 Read
security: policy: ipv6_central_dnat 114 Read
security: policy: ipv6_central_dnat 115 Read/Write
security: policy: ipv6_dos_policy 135 Read/Write
security: policy: ipv6_dos_policy 134 Read
security: policy: ipv6_interface_policy 138 Read
security: policy: ipv6_interface_policy 139 Read/Write
security: policy: ipv6_local_in_policy 131 Read/Write
security: policy: ipv6_local_in_policy 130 Read
security: policy: ipv6_multicast_policy 127 Read/Write
security: policy: ipv6_multicast_policy 126 Read
security: policy: nat46_policy 119 Read/Write
security: policy: nat46_policy 118 Read
security: policy: nat64_policy 117 Read/Write
security: policy: nat64_policy 116 Read
security: policy: proxy_policy 120 Read
security: policy: proxy_policy 121 Read/Write
security: policy: security_policy 108 Read
security: policy: security_policy 109 Read/Write
security: policy: traffic_shaping_policy 141 Read/Write
security: policy: traffic_shaping_policy 140 Read
security: routing 212 Read
security: routing 213 Read/Write
switch 66 Read
switch 67 Read/Write
switch 68 CUSTOM
switch: configuration 102 Read
switch: configuration 103 Read/Write
switch: monitoring 100 Read
switch: monitoring 101 Read/Write
wifi 71 CUSTOM
wifi 70 Read/Write
wifi 69 Read
wifi: configuration 106 Read
wifi: configuration 107 Read/Write
wifi: monitoring 104 Read
wifi: monitoring 105 Read/Write