Veritas Alta™ SaaS Protection Administrator's Guide
- Section I. Introduction to Veritas Alta™ SaaS Protection
- Section II. Administration
- Section III. Manage backups (connectors)
- Overview
- About backup jobs (connectors)
- Overview for adding backup jobs (connectors)
- Configuring the capture scope
- Configuring credentials
- Configuring Delete and Stub policies
- Apps Consent Grant utility
- Backup Exchange Online mailboxes
- Adding connectors for Exchange Online data
- Configuring the capture scope for Exchange connectors
- Configuring the capture scope for Exchange connectors
- Backup SharePoint Online
- Supported SharePoint Online sites and data for backup and restore
- Adding backup jobs (connectors) for SharePoint Online sites and data
- Backup Teams Sites collections
- Backup OneDrive for Business
- Backup Teams chats
- Backup Audit logs
- Backup Google Drive data
- Backup Gmail data
- Backup Salesforce data
- Backup Entra ID (Azure AD) objects
- Backup Box data
- Backup Slack data
- Backup EML data
- Managing backup jobs (connectors)
- Backup jobs (connectors) statuses
- Browsing the backed-up data
- Events
- Overview
- Section IV. Manage restores
- About restore
- Prerequisites for data restore
- Restore dashboard
- Restore Exchange Online mailboxes
- Restore SharePoint Online data
- Restore Teams chats and Teams Channel conversations
- Restore Audit logs
- Restore Box data
- Restore Google Drive data
- Restore Gmail data
- Restore Salesforce data and Metadata
- Restore Salesforce Metadata to the same or another organization
- Restore Entra ID objects
- Restore Slack data
- Restore data to File server
- Restore options
- Section V. Manage data sharing
- Section VI. Manage data downloads
- Section VII. Manage Stors (Storages)
- Section VIII. Policies to manage the backed-up data
- About policies in Veritas Alta™ SaaS Protection
- Configuring policies for data retention (WORM policies)
- Configuring policies for data deletion (Deletion policy)
- Configuring policies for data tiering (Tiering policy)
- Configuring Tagging polices
- Managing policies
- Section IX. Manage users and roles
- Section X. Manage Discovery cases and searches
- Section XI. Manage Scopes
- Section XII. Manage auditing
About user and roles
Veritas Alta™ SaaS Protection offers the capability to implement role-based access control (RBAC) for its tenants. RBAC lets you grant users access and permissions according to their specific roles within the organization.
The following table describes the permissions in Veritas Alta™ SaaS Protection.
Table: User permissions
Permissions | Description |
---|---|
| |
The assigned user is authorized to access all the content within the tenant. They can use the Admin export mode in the Export Utility to retrieve all the content. | |
The assigned user is granted with all permissions except Access All Items, Add Content, and API Impersonation. To mitigate risks associated with the Full Admin account, provision this account only on-demand to prevent account sharing. | |
The assigned user can add new content to the tenant, typically the Service account. | |
The assigned user can only view data and is not permitted to make any changes. | |
The assigned user can delete the content. | |
The assigned user can restore a stubbed item by clicking on it. | |
The assigned user can download the last backed-up SharePoint file by clicking on a stubbed item. | |
The assigned End user can do the following on the End-User portal:
| |
It allows a user to sign in to the Administration portal. The following permissions are available:
| |
: The assigned user can access a wide range of general API. This permission is required for all Service accounts.
| |
The assigned user can use this permission for the Connector service to operate with the Blobless Archive option on a connector. It is advisable to grant and use this permission solely in a drive-shipping scenario. | |
The assigned user can use this permission to impersonate another user by the API. |