Administration GuideCustom Roles and PoliciesRestricting Access for a Role: PCI-Analyst Scenario › Step 6: Assign the PCI-Analyst Role to a User

Previous Topic: Step 5: Create a Policy Based on Analyst Report View-Edit Policy

Next Topic: Step 7: Log in as a PCI-Analyst and Evaluate Access

Step 6: Assign the PCI-Analyst Role to a User

After creating a new role and its supporting policies, it is a good practice to log on as a user with just this role assigned to evaluate whether the access provided is what is needed. Once verified, the new role can be added to the accounts of all users who are to perform the tasks for which the role was designed.

You can create a temporary user account for the purpose of testing a new role and then delete that account when testing is complete. Or, you can create a user called Test-User and replace the role assignment at each reuse.

More information:

Assign a Role to a Global User