User Permissions
- Last Updated: July 4, 2025
- 2 minute read
- LoadMaster
- LoadMaster GA
- Documentation
A number of “roles” are available to select from in the modify user screen. A change to a user’s roles takes effect in real-time. The different roles can be combined and they are mutually exclusive.
The default access provided to users is read only access. This provides access to:
- Read access to most screens in the WUI
- Read access to log files
- Generate Client Certificate Requests (CSRs)
- Perform basic debugging
The various permission roles are described in the sections below.
Real Servers
This role permits the following operations on Real Servers:
- Add
- Modify
- Delete
- Enable
- Disable
While adding or modifying a Real Server, the following settings can be set or modified:
- Real Server Address
- Port
- Forwarding Method
- Weight
- Connection Limit
Virtual Services
This role relates to managing Virtual Services. This includes SubVSs. Virtual Service actions permitted vary depending on whether or not the Allow Extended Permissions option is enabled. For further information, refer to the Virtual Service Permissions section.
Rules
This role permits managing content rules. Rule actions permitted include adding, deleting and modifying.
System Backup
This role permits performing system backups.
Certificate Creation
This role permits managing SSL certificates. Certificate management includes adding, deleting and modifying SSL certificates.
Intermediate Certificates
This role permits managing intermediate certificates. This includes adding and deleting intermediate certificates.
Certificate Backup
This role permits the ability to export and import certificates.
User Administration
This role is allowed access to all functionality within the System Configuration > System Administration > User Management screen, for all user management.
GEO Control
This role provides the ability to manage GEO settings, if relevant. For further information on GEO, refer to the GEO Feature Description.
Add Virtual Services
This role is only visible if the Allow Extended Permissions check box is enabled. This role relates to managing Virtual Services. This includes SubVSs. Refer to the Virtual Service Permissions section for further details on the permissions provided by this option.
All Permissions
This role provides all permissions, except the ability to change the bal password.
Virtual Service Permissions
There are two permissions relating to Virtual Services - Virtual Services and Add Virtual Services.
The Add Virtual Services permission is only visible when the Allow Extended Permissions check box is selected on the User Management screen. The Virtual Service operations allowed differ based on what combination of options you have selected. For a summary of these connotations, refer to the table below:
| Allow Extended Permissions | Virtual Services | Add Virtual Service | Operations Allowed | Operations not Allowed |
|---|---|---|---|---|
| Enabled | Enabled | Disabled |
|
|
| Enabled | Disabled | Enabled |
|
|
| Enabled | Enabled | Enabled |
|
Not applicable |
| Enabled | Disabled | Disabled | View existing Virtual Services | Not applicable |
| Disabled | Enabled | Disabled |
|
Not applicable |
| Disabled | Disabled | Disabled | View existing Virtual Services |
|