BlueXP ransomware protection role-based access to features

07/09/2025 Contributors

BlueXP ransomware protection employs roles to govern the access that each user has to specific features and actions.

The service uses the following roles that are specific to BlueXP ransomware protection.

Ransomware protection admin: Manage actions on the Protect, Alerts, Recover, Settings, and Reports tabs.
Ransomware protection viewer: View workload data, view alert data, download recovery data, and download reports.

These roles are in addition to the BlueXP platform roles that govern access to the BlueXP service and other services, such as data protection, workload management, and so on. For details about all BlueXP platform roles, see the BlueXP setup and administration documentation.

The following table indicates the actions that each BlueXP ransomware protection role can perform.

Feature and action	Ransomware protection admin	Ransomware protection viewer
View dashboard and all tabs	Yes	Yes
On dashboard, update recommendation status	Yes	No
Start free trial	Yes	No
Initiate discovery of workloads	Yes	No
Initiate rediscovery of workloads	Yes	No
On the Protect tab:
Add, modify, or delete protection plans	Yes	No
Protect workloads	Yes	No
Identify exposure to sensitive data	Yes	No
List protection plans and details	Yes	Yes
List protection groups	Yes	Yes
View protection group details	Yes	Yes
Create, edit or delete protection group	Yes	No
Download data	Yes	Yes
On the Alerts tab:
View alerts and alert details	Yes	Yes
Edit incident status	Yes	No
Mark alert for recovery	Yes	No
View incident details	Yes	Yes
Dismiss or resolve incicents	Yes	No
Block user	Yes	No
Get full list of impacted files	Yes	No
Download alerts data	Yes	Yes
On the Recover tab:
Download impacted files	Yes	No
Restore workload	Yes	No
Download recovery data	Yes	Yes
Download reports	Yes	Yes
On the Settings tab:
Add or modify backup destinations	Yes	No
List backup destinations	Yes	Yes
View connected SIEM targets	Yes	Yes
Add or modify SIEM targets	Yes	No
Connect workload security targets	Yes	No
View workload security connection status	Yes	Yes
Disconnect workload security targets	Yes	No
Configure readiness drill	Yes	No
Start readiness drill	Yes	No
Reset readiness drill	Yes	No
Edit readiness drill	Yes	No
Review readiness drill status	Yes	Yes
Update discovery configuration	Yes	No
View discovery configuration	Yes	Yes
On the Reports tab:
Download reports	Yes	Yes

Feature and action

Ransomware protection admin

Ransomware protection viewer

View dashboard and all tabs

Yes

On dashboard, update recommendation status

Yes

Start free trial

Yes

Initiate discovery of workloads

Yes

Initiate rediscovery of workloads

Yes

On the Protect tab:

Add, modify, or delete protection plans

Yes

Protect workloads

Yes

Identify exposure to sensitive data

Yes

List protection plans and details

Yes

List protection groups

Yes

View protection group details

Yes

Create, edit or delete protection group

Yes

Download data

Yes

On the Alerts tab:

View alerts and alert details

Yes

Edit incident status

Yes

Mark alert for recovery

Yes

View incident details

Yes

Dismiss or resolve incicents

Yes

Block user

Yes

Get full list of impacted files

Yes

Download alerts data

Yes

On the Recover tab:

Download impacted files

Yes

Restore workload

Yes

Download recovery data

Yes

Download reports

Yes

On the Settings tab:

Add or modify backup destinations

Yes

List backup destinations

Yes

View connected SIEM targets

Yes

Add or modify SIEM targets

Yes

Connect workload security targets

Yes

View workload security connection status

Yes

Disconnect workload security targets

Yes

Configure readiness drill

Yes

Start readiness drill

Yes

Reset readiness drill

Yes

Edit readiness drill

Yes

Review readiness drill status

Yes

Update discovery configuration

Yes

View discovery configuration

Yes

On the Reports tab:

Download reports

Yes

BlueXP ransomware protection role-based access to features

Creating your file...