Administrative role mappings

Administrative roles, their permissions, and their attribute mappings are listed here for your reference.

Refer to the following:

Argo CD roles
Grafana roles
OpenSearch roles
PingAccess roles
PingFederate roles
Prometheus roles
Self-Service roles

Argo CD roles

Argo CD attribute mappings and permissions

Attribute mapping	Permissions
argo-configteam	Argo CD restart statefulset access for the Dev and Test environments.

Attribute mapping

Permissions

argo-configteam

Argo CD restart statefulset access for the Dev and Test environments.

Grafana roles

Grafana attribute mappings and permissions

Attribute mapping	Permissions
dev-graf-editor	Grafana editor access for the Dev environment.
test-graf-editor	Grafana editor access for the Test environment.
stage-graf-editor	Grafana editor access for the Stage environment.
prod-graf-editor	Grafana editor access for the Prod environment.

Attribute mapping

Permissions

dev-graf-editor

Grafana editor access for the Dev environment.

test-graf-editor

Grafana editor access for the Test environment.

stage-graf-editor

Grafana editor access for the Stage environment.

prod-graf-editor

Grafana editor access for the Prod environment.

OpenSearch roles

OpenSearch attribute mappings and permissions

Attribute mapping	Permissions
os-configteam	OpenSearch admin access for all environments.

Attribute mapping

Permissions

os-configteam

OpenSearch admin access for all environments.

PingAccess roles

PingAccess attribute mapping and permissions

Attribute mapping	Permissions
dev-pa-admin	PingAccess admin access for the Dev environment.
dev-pa-audit	PingAccess audit access for the Dev environment.
dev-pa-platform	PingAccess platform access for the Dev environment.
test-pa-admin	PingAccess admin access for the Test environment.
test-pa-audit	PingAccess audit access for the Test environment.
test-pa-platform	PingAccess platform access for the Test environment.
stage-pa-admin	PingAccess admin access for the Stage environment.
stage-pa-audit	PingAccess audit access for the Stage environment.
stage-pa-platform	PingAccess platform access for the Stage environment.
prod-pa-admin	PingAccess admin access for the Prod environment.
prod-pa-audit	PingAccess audit access for the Prod environment.
prod-pa-platform	PingAccess platform access for the Prod environment.

Attribute mapping

Permissions

dev-pa-admin

PingAccess admin access for the Dev environment.

dev-pa-audit

PingAccess audit access for the Dev environment.

dev-pa-platform

PingAccess platform access for the Dev environment.

test-pa-admin

PingAccess admin access for the Test environment.

test-pa-audit

PingAccess audit access for the Test environment.

test-pa-platform

PingAccess platform access for the Test environment.

stage-pa-admin

PingAccess admin access for the Stage environment.

stage-pa-audit

PingAccess audit access for the Stage environment.

stage-pa-platform

PingAccess platform access for the Stage environment.

prod-pa-admin

PingAccess admin access for the Prod environment.

prod-pa-audit

PingAccess audit access for the Prod environment.

prod-pa-platform

PingAccess platform access for the Prod environment.

PingFederate roles

PingFederate attribute mapping and permissions

Attribute mapping	Permissions
dev-pf-audit	PingFederate audit access for the Dev environment.
dev-pf-crypto	PingFederate crypto access for the Dev environment.
dev-pf-expression	PingFederate expression access for the Dev environment.
dev-pf-roleadmin	PingFederate role admin access for the Dev environment.
dev-pf-useradmin	PingFederate user admin access for the Dev environment.
test-pf-audit	PingFederate audit access for the Test environment.
test-pf-crypto	PingFederate crypto access for the Test environment.
test-pf-expression	PingFederate expression access for the Test environment.
test-pf-roleadmin	PingFederate role admin access for the Test environment.
test-pf-useradmin	PingFederate user admin access for the Test environment.
stage-pf-audit	PingFederate audit access for the Stage environment.
stage-pf-crypto	PingFederate crypto access for the Stage environment.
stage-pf-expression	PingFederate expression access for the Stage environment.
stage-pf-roleadmin	PingFederate role admin access for the Stage environment.
stage-pf-useradmin	PingFederate user admin access for the Stage environment.
prod-pf-audit	PingFederate audit access for the Prod environment.
prod-pf-crypto	PingFederate crypto access for the Prod environment.
prod-pf-expression	PingFederate expression access for the Prod environment.
prod-pf-roleadmin	PingFederate role admin access for the Prod environment.
prod-pf-useradmin	PingFederate user admin access for the Prod environment.

Attribute mapping

Permissions

dev-pf-audit

PingFederate audit access for the Dev environment.

dev-pf-crypto

PingFederate crypto access for the Dev environment.

dev-pf-expression

PingFederate expression access for the Dev environment.

dev-pf-roleadmin

PingFederate role admin access for the Dev environment.

dev-pf-useradmin

PingFederate user admin access for the Dev environment.

test-pf-audit

PingFederate audit access for the Test environment.

test-pf-crypto

PingFederate crypto access for the Test environment.

test-pf-expression

PingFederate expression access for the Test environment.

test-pf-roleadmin

PingFederate role admin access for the Test environment.

test-pf-useradmin

PingFederate user admin access for the Test environment.

stage-pf-audit

PingFederate audit access for the Stage environment.

stage-pf-crypto

PingFederate crypto access for the Stage environment.

stage-pf-expression

PingFederate expression access for the Stage environment.

stage-pf-roleadmin

PingFederate role admin access for the Stage environment.

stage-pf-useradmin

PingFederate user admin access for the Stage environment.

prod-pf-audit

PingFederate audit access for the Prod environment.

prod-pf-crypto

PingFederate crypto access for the Prod environment.

prod-pf-expression

PingFederate expression access for the Prod environment.

prod-pf-roleadmin

PingFederate role admin access for the Prod environment.

prod-pf-useradmin

PingFederate user admin access for the Prod environment.

Prometheus roles

Prometheus attribute mapping and permissions

Attribute mapping	Permissions
prom	Prometheus admin access for all environments.

Attribute mapping

Permissions

prom

Prometheus admin access for all environments.

Self-Service roles

Self-Service attribute mappings and permissions

Attribute mapping	Permissions
dev-tls-audit	TLS read-only access for the Dev environments.
dev-tls-admin	TLS admin access for the Dev environment.
test-tls-audit	TLS read-only access for the Test environment.
test-tls-admin	TLS admin access for the Test environment.
stage-tls-audit	TLS read-only access for the Stage environment.
stage-tls-admin	TLS admin access in the Stage environment.
prod-tls-audit	TLS read-only access for the Prod environment.
prod-tls-admin	TLS admin access for the Prod environment.
all-tls-audit	TLS read-only audit access for all environments.
all-tls-admin	TLS admin access for all environments.

Attribute mapping

Permissions

dev-tls-audit

TLS read-only access for the Dev environments.

dev-tls-admin

TLS admin access for the Dev environment.

test-tls-audit

TLS read-only access for the Test environment.

test-tls-admin

TLS admin access for the Test environment.

stage-tls-audit

TLS read-only access for the Stage environment.

stage-tls-admin

TLS admin access in the Stage environment.

prod-tls-audit

TLS read-only access for the Prod environment.

prod-tls-admin

TLS admin access for the Prod environment.

all-tls-audit

TLS read-only audit access for all environments.

all-tls-admin

TLS admin access for all environments.

PingOne Advanced Services

Administrative role mappings

Argo CD roles

Grafana roles

OpenSearch roles

PingAccess roles

PingFederate roles

Prometheus roles

Self-Service roles