Account Roles

Roles in F5 Distributed Cloud Console (F5XC)

To access App Infrastructure Protection (AIP) via F5XC, users must have one of the following three roles applied from the F5XC user management screen or be a tenant owner. Your role in F5XC determines your role in AIP according to the following:

  • f5xc-aip-admin in F5XC becomes Owner in AIP


    AIP does not currently support multiple Owners for one organization. If an Owner already exists in your AIP organization, AIP provisions F5XC Admin accounts with the User role. If you are a tenant owner, then you automatically assume the role of f5xc-aip-admin, but the multiple Owner condition still applies.

    If you need to change the Owner of an organization, contact Support.

  • f5xc-aip-developer in F5XC becomes User in AIP
  • f5xc-aip-monitor in F5XC becomes Reader in AIP

For more information about roles in F5XC, see Roles.

Roles in AIP

AIP includes three possible roles for accounts in your organization. The permissions of each role below apply to both the AIP Cloud Security Platform (CSP) and API:

  • Owner – The Owner role invites new users to your organization, assigns roles to accounts, and can manage, revoke, and remove accounts. The Owner also has the same permissions as the User and the Reader roles.
  • User – The User role can view, search, and edit all data entering the AIP CSP. The user can also invite new users to your organization, but can only assign new users the Monitor role.
  • Reader – The Reader role can view all data entering the AIP CSP, but cannot make any changes to the data.

Additional Information

Overview of the User Management page.

Add a user to your AIP organization.

Remove a user from your AIP organization.

Revoke a user's access to your AIP organization.


Was this article helpful?
0 out of 0 found this helpful