Role bases login on IC2 and device level
Read Only – Can log in and view the network but not make any changes, create read-only users.
Limited Configuration – Can log in and configure Wi-Fi SSID’s, Wi-Fi Guest Access, Captive Portals, Set up Report Emailing & Set up notifications, create read-only users.
Advanced Configuration – Can do limited configuration + Network Settings, , create read-only users.
None of the above should have the ability to change the below:
Device Name
WAN Configuration
LTE Configuration
Move or Delete Devices
Create Group Administrators
They should also not be able to view the details of Group or Organisation Administrators
agree, I would like to have more granular control as well. For example, I would like to be able to give some users the ability to change switch port profiles but not general admin.