What is a one sentence summary of your feature request?
need rbac enhancement to allow license management
Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.
problem: #1 - only admin role is allowed to upload a license file when expired
problem: #2 - the admin is unavailable or away from the office
problem: #3 - extended business impact due to expired license
Just in time access or Just enough privilege to perform the without giving full admin rights to a non-admin user.
How do you currently solve the challenges you have by not having this feature?
must wait for the person assigned the admin role to become available or return to the office for support
I am sorry this response is so late. I am relatively new.
As far as the request, you only have 1 admin? I would think that would cause other risk beyond licensing if that person is out. Such as needing to make a new session or users in an emergency. I understand you want least privilege, but maybe one other person should be an admin as well.
I just read up on the your question Stephen and Billy’s answer. The admin role within Privilege Secure should ALWAYS be a non Domain Admin account. A domain user account or a local account should suffice. That way you have a least privilege approach and you can assign a second domain user account just in case the first (NPS console admin) is not available. Hope this helps clarify things a bit. Best Regards, Nils Knippen, Senior Solutions Engineer