Overview
This article describes how to remove or assign user roles to specific CrashPlan accounts so you can set up role-based access control for your CrashPlan environment. Managing who has access to CrashPlan resources is an important security aspect of any CrashPlan environment.
CrashPlan includes a pre-existing set of user roles or privileges that can be applied to user accounts. These built-in user roles include a fine-grained set of permissions to ensure users only have access to the resources they need.
Considerations
Only users with the Customer Cloud Admin, Cross Org Admin, or Org Admin roles can assign roles to other users. No user can remove roles from their own account and attempting to do so will result in an error. Removing roles from an admin user must be done by another admin user with equivalent or higher privileges.
Assign roles to a specific user
CrashPlan Essential, Professional, Enterprise, and MSPs
- Sign in to the CrashPlan console.
- Go to Administration > Environment > Users.
- Click a user row to open the user details screen.
- Select Edit from the action menu in the upper-right corner.
- Select the Roles tab.
- From the Available Roles list, select the role you'd like assigned to the user.
For more information about available roles, as well as the permissions and limitations for each role, see Roles reference - Click the right arrow to add the selected role to the user's Current Roles list.
- Select Update User to save your changes.
CrashPlan for Small Business
CrashPlan for Small Business organizations feature two roles - User and Admin. To change the role of a particular user:
- Sign in to the CrashPlan console.
- Click Users.
- From the list of users, select the user you wish to add or remove as admin.
- Click the Action menu in the upper left.
- Select either Make admin or Remove admin.
Administrator role assignment email
Does not apply to CrashPlan for Small Business
When you assign a CrashPlan administrator role to a user, all Customer Cloud Admin users receive an email with details of the assignment. You can ignore the email if you made the role assignment. If another administrator made the role assignment, review the information in the email carefully to ensure the user is authorized to have the permissions the role provides.
The email includes:
- The CrashPlan username of the person assigned the administrator role
- The role assigned
- The CrashPlan organization the assignee belongs to
- The date and time of the role assignment
- The CrashPlan username of the person who made the role assignment
The email is sent to Customer Cloud Admin users when the following administrator roles are assigned:
- Admin Restore
- Admin Restore Limited
- Cross-Org Admin
- Cross Org Legal Admin
- Cross Org Manager
- Customer Cloud Admin
- Insider Risk Admin
- Org Admin
- Org Legal Admin
- Org Manager
- Security Administrator
- Security Center - Restore