KnowBe4 Releases Delegated Admin Permissions

KnowBe4 is proud to announce support for delegated permissions as part of the Security Roles feature. Security Roles allows you to limit roles to only display specific data or allow for the phishing, training, and user management of specific groups.

Each Security Role is completely customizable to allow for the creation of the exact roles and responsibilities for Target Groups in your organization.


Because the roles are not simply a set of predefined permissions it is possible to create the exact permission model that fits your needs. Below are some common scenarios where Security Roles will allow the console administrator to give security roles access to Targeted Groups within the KnowBe4 console:

Example scenarios include:

  • Auditors that need to review training history only
  • HR departments that want to see individual user results
  • Training groups that want to review training content prior to deployment
  • IT managers that oversee security awareness training within their own business unit that need to create both phishing and training campaigns
  • Corporate IT needs to lock down templates to ensure the use of approved phishing templates

Set access controls for:

  • Review (but don't touch!) results of phishing tests
  • Management of Users and Groups
  • Create new Phishing Security Campaigns
  • Review of training content available in the ModStore
  • Create new Training Campaigns for Sales and Marketing teams in West Coast offices only
  • Delegate specialized authority or jurisdiction to other admins with custom admin roles

Security Roles are available to all customers at Platinum and Diamond subscription levels. You can go to the Users tab and then the Security Roles tab to check it out.

Use Security Roles With Smart Groups:

Here is something cool: Security Roles can be applied to Smart Groups, and Smart Groups may be targeted as part of the delegated permissions feature.

    • Example of "Smart Groups may be targeted as part of the delegated permissions feature": You can have a Smart Group which contains "all users who have the manager 'John Smith'", and a normal group containing only the manager John Smith. The group containing the manager John Smith can have a Security Role applied to it, which allows for Read/Write access to the User and Group information as well as Phishing and Training information for the Smart Group "all users who have the manager 'John Smith'".

    • Example of "Security Roles can be applied to Smart Groups": You can have a Smart Group containing "all users in the 'HR' group" and apply a Security Role to that Smart Group that gives that group access to the Users and Groups area to handle user and group changes.

Learn more about Security Roles and the new delegated permissions feature here:

See it for yourself and get a live, one-on-one demo.

Request A Demo

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:


Topics: KnowBe4

Subscribe To Our Blog

Domain Spoof Test Contest

Get the latest about social engineering

Subscribe to CyberheistNews