User Roles#
Cortex defines four roles:
read: the user can access all the jobs that have been performed by the Cortex 2 instance, including their results. However, this role cannot submit jobs. Moreover, this role cannot be used in the defaultcortexorganization. This organization can only contain super administrators.analyze: theanalyzerole implies thereadrole, described above. A user who has aanalyzerole can submit a new job using one of the configured analyzers for their organization. This role cannot be used in the defaultcortexorganization. This organization can only contain super administrators.orgAdmin: theorgAdminrole implies theanalyzerole. A user who has ananalyzerole can manage users within their organization. They can add users and give themread,analyzeand/ororgAdminroles. This role also permits to configure analyzers for the organization. This role cannot be used in the defaultcortexorganization. This organization can only contain super administrators.superAdmin: this role is incompatible with all the other roles listed above (see chart below for examples). It can be used solely for managing organizations and their associated users. When you install Cortex, the first user that is created will have this role. Several users can have it as well but only in the defaultcortexorganization, which is automatically created during installation.
The chart below lists the roles and what they can and cannot do:
| Actions | read | analyze | orgAdmin | superAdmin |
|---|---|---|---|---|
| Read reports | X | X | X | |
| Run jobs | X | X | ||
| Enable/Disable analyzer | X | |||
| Configure analyzer | X | |||
| Create org analyst | X | X | ||
| Delete org analyst | X | X | ||
| Create org admin | X | X | ||
| Delete org admin | X | X | ||
| Create Org | X | |||
| Delete Org | X | |||
| Create Cortex admin user | X |