Overview
The focus of Appendix R: Separation of Duties Matrix is typically on privileged and not-privileged access. You will see that no logical access roles are not included in the example below. However, you can include no logical access roles as well.
Example Separation of Duties Matrix
The following table outlines the separation of duties for user roles within the FedRAMP System Name cloud environment. The table is categorized by a user’s role, whether he/she is an internal employee or external entity such as a contractor, the user’s functions, and the level of access granted to the system.
| Role | Internal or External | Functions Performed | Development Environment Access | Production Environment Access | Network Log Access | Security Log Access |
| Admin User | Internal | Full administrative access (root) | Yes | Yes | Yes | Yes |
| Developer | Internal | Development | Yes | No | No | No |
| Non-Admin User | Internal | Read-Only Access to Dashboards | No | No | No | No |
| Customer Admin | External | Application Administrator on Customer Instance | No | No | Yes | Yes |
| Non-Admin Customer User | External | Set by Customer Admin | No | No | No | No |
Comments
0 comments
Please sign in to leave a comment.