Combined Roles
Illumio includes fine-grained roles to manage security policy. The roles control different aspects of the security workflow. By mixing and matching them, you can effectively control the access needed by your company.
Ruleset Only Roles
You can add users to the Ruleset Manager and Ruleset Provisioner roles so that they can edit the security policies for workloads in their scope and provision them
These users can write rules for their workloads and provision them when the rules do not have dependencies on global objects, such as services or IP lists.
Owner Roles
You can add security professionals professionals to the Owner role so that they can define all security policy for an enterprise.
Provisioner Roles
Provisioners have the capability to modify global objects, such as services, IP lists, and label groups.