Fortinet white logo
Fortinet white logo

Administration Guide

Configuring granular SD-WAN permissions

Configuring granular SD-WAN permissions

Permissions

Using user profiles, you can provide different permissions for different components of SD-WAN configuration, including Interface Members, Performance SLA, and SD-WAN Rule.

You may set these permissions for Central Management as well Per Device.

Organization users who are assigned this profile will have the defined access to only the specified parts of SD-WAN templates in the organization portal.

Hiding performance SLAs using name-based filters

Administrators may also customize which performance SLAs are shown to the organization user using name-based filters in the profile.

To hide performance SLAs:
  1. In System > Profiles, add or edit a profile.

  2. In Access Permissions > SD-WAN, select Read, Read/Write, Custom.

  3. In Name-based Filter(s), enter the desired filter text.

  4. Enable or disable Exclude Filter:

    • Enabled: any performance SLAs containing the filters are hidden from users.

    • Disable: only performance SLAs containing the filters are shown to users.

Note

The filter applies to both SD-WAN monitoring and configuration.

Example

In the following example, Name-based Filter(s) is set to shortcut, LinkA, and AWS, while Exclude Filter is enabled.

The Default_AWS, LinkA, and shortcut performance SLAs are hidden from users with this profile.

Configuring granular SD-WAN permissions

Configuring granular SD-WAN permissions

Permissions

Using user profiles, you can provide different permissions for different components of SD-WAN configuration, including Interface Members, Performance SLA, and SD-WAN Rule.

You may set these permissions for Central Management as well Per Device.

Organization users who are assigned this profile will have the defined access to only the specified parts of SD-WAN templates in the organization portal.

Hiding performance SLAs using name-based filters

Administrators may also customize which performance SLAs are shown to the organization user using name-based filters in the profile.

To hide performance SLAs:
  1. In System > Profiles, add or edit a profile.

  2. In Access Permissions > SD-WAN, select Read, Read/Write, Custom.

  3. In Name-based Filter(s), enter the desired filter text.

  4. Enable or disable Exclude Filter:

    • Enabled: any performance SLAs containing the filters are hidden from users.

    • Disable: only performance SLAs containing the filters are shown to users.

Note

The filter applies to both SD-WAN monitoring and configuration.

Example

In the following example, Name-based Filter(s) is set to shortcut, LinkA, and AWS, while Exclude Filter is enabled.

The Default_AWS, LinkA, and shortcut performance SLAs are hidden from users with this profile.