Rainbow implements a role-based access control model for cloud customers, allowing precise management of access rights and authorizations.
Note: This model is based on predefined rights profiles aligned with the functions available through the Rainbow cloud service.These profiles support compliance with key security principles such as:
- The principle of least privilege, by granting users only the permissions necessary to perform their tasks.
- The need-to-know principle, ensuring access is limited to relevant information and tools.
- The separation of duties, maintaining a clear distinction between operational and oversight roles.
If you are the person in charge of managing Rainbow for your company, the features available to you depend on your assigned Rainbow role. Each role determines access to specific functions such as user management, telephony configuration, license distribution, and company profile settings.
- Rainbow Administration: Manage the system, manage members, and allocate available licenses to members of the company. An administrator can update a subscription if the Business Partner with the Finance role has delegated the right to update subscriptions.
- Rainbow Analytics: You can consult analytical data for your company.
| Role Administration | Role Analytics | |
|---|---|---|
| Manage members | Yes | No |
| Manage System | Yes | No |
| Create / Add subscriptions | No | No |
| Update subscriptions | No/Yes* | No |
| Subscriptions status | Yes | No |
| License allocation | Yes | No |
| Access Analytics | No | Yes |
*Yes, if the Business Partner with Finance role has delegated the rights to update subscriptions.