Skip to main content
  • EN

Hello Netskope Community,

One of our customers has a requirement where a specific role should have the ability to create policies and apply global/general settings, but not be able to delete any policies or settings due to compliance reasons.

Currently, this level of granularity is not supported. The available permission levels—None, View, Manage, and Manage and Apply—provide either read-only or full read-write access to a specific feature or function. However, there is no built-in option to restrict only the delete action for a role.

We would like to know if there are any known workarounds or if this capability is being considered for a future release.

I can’t answer if Netskope will add that as a feature. 

However, you could use Cloud Exchange to monitor when a user deletes a policy and generate an alert as a compromise.

Reply


Badges Winner

Show all badges

Not finding what you're looking for?

Don't be shy and let us know about your challenge.

Ask your question here!
Terms & ConditionsCookie settings