Role-Based Access Control (RBAC)¶

Role-Based Access Control (RBAC) is a cornerstone of modern access management, ensuring users have the exact permissions they need—no more, no less. Escape's RBAC features allow organizations to define roles and permissions with precision, ensuring robust security and streamlined operations.

Escape's RBAC is accessible under the Organization Settings and Application Settings.

Managing User Access¶

Role Configuration¶

Access user and role settings through your organization's name in the sidebar. Configure user roles in the "Roles" tab.

Role Permissions¶

Create new roles using the "Create a new role" feature. Modify existing role permissions through the side panel, where you can adjust detailed access rights.

User Management¶

1. Navigate to the "Team" tab
2. Access the user management panel
3. Invite users by email and assign specific roles

Role Assignment¶

To modify a user's role, use the "EDIT" button next to their name in the user table.

Roles and Permissions¶

Core Features¶

Escape defines roles through a mapping between features and CRUD permissions. Core features include:

• Applications: Scan configurations and results for discovered endpoints
• Inventory: Discovered endpoints from integrations and crawling
• Integrations: Configuration for endpoint discovery and context enrichment
• Reporting: Organizational dashboard for security posture visualization
• Notifications: Notification workflow configuration and history

Access Matrix¶

Application-Level Permissions¶

Beyond core roles, Escape enables granular permissions at the application level. This ensures users or business units can be restricted to specific applications, following the principle of least privilege.

Configure permissions for each application by selecting the appropriate role: