Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. Cohesity Alta SaaS Protection Administrator's Guide
  3. Manage users and roles
  4. Role-based access control
Cohesity Alta SaaS Protection Administrator's Guide

Role-based access control

Role-based access control (RBAC) in the Cohesity Alta SaaS Protection environment enables you to manage resource access by assigning roles to individual users. Resources include backed-up content, connectors, policies, and more in this context. The roles define users' access to these resources, with permissions governed by the assigned roles. RBAC allows for the customization of roles to meet specific business needs. Roles can be modified or deleted as requirements change, ensuring that only authorized users can access them. Users within the same group inherit the assigned role, enabling them to perform the same operations on the resource.

After Active Directory (AD) synchronization with your environment, all users and groups become recognized by Cohesity Alta SaaS Protection. These users are displayed on the Users and groups page in the Cohesity Alta SaaS Protection Administration portal. The users synchronized from the customer's AD are classified as internal users, while those added directly through Cohesity Alta SaaS Protection and outside the customer's domains and the users who are deleted from your AD are referred to as external users. Both the internal and external users are assigned the Default system role, which provides access to the End-User portal. This Default role grants permissions to search, share, and perform self-restores for content they have access to.

Feedback

Was this page helpful?
Previous

Manage users and roles

Next

Permissions tab

Feedback

Was this page helpful?