Wazuh Logo
  • Getting started
  • Quickstart
  • User manual
    • Wazuh server
    • Wazuh indexer
    • Wazuh dashboard
    • Wazuh agent
    • Upscaling a Wazuh deployment
    • Data analysis
    • User administration
    • Capabilities
    • Wazuh server API
      • Getting started
      • Configuration
      • Securing the Wazuh server API
      • Role-Based Access Control
        • How it works
        • Authorization Context
        • RBAC Reference
      • Filtering data using Wazuh Query Language (WQL)
      • Use cases
      • Reference
    • Reference
Wazuh
  • User manual
  • Wazuh server API
  • Role-Based Access Control
  • Edit on GitHub

Role-Based Access Control

Role-based access control (RBAC) adds the capability to control access to different endpoints and resources through the Wazuh server API based on users’ privileges.

Contents

  • How it works
    • RBAC Policies
    • RBAC modes
    • Set RBAC mode
    • Create a new policy
    • Create a new role
    • Create a new user
    • Edit allow_run_as
    • Assign policies to roles
    • Create a new rule
    • Assign rules to roles
    • Assign roles to a user
    • Priority of roles and policies
  • Authorization Context
    • Authorization context login method
    • Rules and roles
    • Advanced examples
  • RBAC Reference
    • Resources
    • Actions
    • Default policies
    • Default roles
    • Default rules
Previous Next

© Copyright © 2025 Wazuh, Inc..

Built with Sphinx using a theme provided by Read the Docs.