There are two levels of roles in Mandiant Advantage Attack Surface Management (MA-ASM): Project Roles and Collection Roles. Each role is associated with different permissions and is assigned in a different manner.
Project Roles
Two project-level roles are available in MA-ASM: Owner and Member.
For information on how to assign these roles, see Manage Project Membership.
Confirm whether you are an Owner or a Member of a Project
- Select the Project from the MA-ASM Projects and Settings menu.
- Select Account Settings from the MA-ASM Projects and Settings menu. Your role for the selected project is displayed with your name.
The user is an Owner of the selected Project
Project Owner
The creator of a Project is the initial Project Owner. Project Owners are able to:
- assign additional Project Owners to the Project
- invite Members to the Project or Collections contained within
- archive the Project
- add integrations to the Project
- rename the Project or Collections contained within
Project Member
When a Member is invited to a Project, they do not see any Collections in the Project until they have been explicitly assigned a role within a Collection. For more information, see the following section about Collection Roles.
Collection Roles
Project Members must be assigned a Collection-level role to be able to view a Collection in MA-ASM. Three roles are available:
- Viewer: Able to view Collection output, but not able to make any changes, even to Seeds
- Analyst: Able to change the settings of a given Entity or Issue, but not Collection Settings
- Admin: Able to change the Collection settings, add Seeds, and configure Issues, but cannot invite others
Project Owners are Admins on all Collections within the Project.
For information on how to assign these roles, see Assign Roles Within a Collection.