Overview of users and roles in Acunetix

This guide provides an overview of users and default roles in Acunetix. For information about adding users and configuring roles, refer to Managing users.

Overview

Acunetix is a multi-user system that offers role-based access control (RBAC) to efficiently manage user access. This lets you limit or authorize user access to Acunetix by assigning users specific roles with access and permissions according to their role needs.

The first account created is the System Administrator (previously Platform Administrator and also referred to as the root account). The System Administrator can create additional users, assign each user account a role, and configure which scan targets can be scanned or reported on.

NOTE:

Only System Administrators can add users.

Default Roles

A role is a collection of permissions that administrators assign to users or user groups. When creating a user, you need to choose a role for that user. Acunetix has five default roles. The table below shows these default roles and what they can be responsible for.

	Default Roles
Features	System Administrator	Platform Administrator	AppSec Admin	AppSec User	Report Viewer
Targets	Full Access	Full Access	Full Access	Read	Read
Target Groups	Full Access	Full Access	Read	Read	Read
Scan Profiles	Full Access	Full Access	Read	Read	Read
Issue Trackers	Full Access	Full Access	Full Access	Read	Read
Vulnerabilities	Full Access	Full Access	Full Access	Full Access	Read
Scans	Full Access	Full Access	Full Access	Full Access	Read
Reports	Full Access	Full Access	Full Access	Full Access	Full Access
System	Full Access	None	None	None	None
WAF	Full Access	Full Access	Full Access	Read	Read
Engines (On-Premises only)	Full Access	Read	None	None	None
Discovery	Full Access	Full Access	Full Access	None	None
Excluded Hours	Full Access	Full Access	Read	Read	Read
API Discovery	Full Access	Full Access	None	None	None

« Back to the Acunetix Documentation Page