Application roles

Application roles give users permissions and capabilities within a particular application. Application roles are assigned with access groups.

Use these application roles to grant permissions and capabilities within an application:

  • An Application Administrator has no restrictions and can manage other users' access in the application.

  • An Application RulesAdmin can edit rules and policies in the application, enable Protect, manage notifications and scoring for the application.

  • An Application Editor can remediate findings, add tags, manage vulnerabilities, edit attributes, merge applications, add or delete applications, and create servers. The majority of Contrast users have this role.

  • An Application Viewer has read-only access to the Contrast interface to see scores, libraries, vulnerabilities and comments, but can't perform edits to traces to the application.

  • The No Access role blocks user access to the application.

You can add application roles when you create or edit an organization access group.