KnowBe4 Compliance Manager: User Types
This article describes different user types within KCM (KnowBe4 Compliance Manager). If you are looking for KnowBe4's Security Awareness Training platform's Users and Groups product manual, click here.
Creating a User: Selecting a User Type
The KCM platform consists of two different modules, the Compliance module, and the Policy Management module. There are different user types under each module, and each user type has unique privileges in the KCM console.
User Account Types
|Compliance User Type||Privileges||Definition|
|Account Administrator||Full access to all areas, Scopes, and modules within KCM||Account Administrators have complete control over all aspects of the KCM application. They can create custom Templates, assign Responsibilities, create and update Controls, clone Scopes, and adjust mappings of Requirements and Controls. As an Account Owner/Administrator, you are presented with a Global Dashboard which shows all Tasks for the organization, as well as other useful information that pertains to the entire account.|
Contributors can be:
|Auditor||Read-only access to specified Scopes, Policy Management Campaigns, and related reports||Auditor accounts are used to give a reviewer, assessor, consultant, board member, or auditor read-only access to one or more Scopes. An Auditor can only see Reports for the Scopes they're given access to. Reports contain the Requirements, Controls, and Evidence related to a given project or Scope.|
|Policy Management User Type||Privileges||Definition|
|Policy Administrator||Full access to all objects (i.e., campaigns, groups, users, policies, etc.) within the Policy Management module||Policy Administrators can create and maintain all Policy Management Campaigns.|
Access to campaign data for the specified allowed campaigns
|Campaign Managers are granted access to one or more Policy Management campaigns. They can monitor the participation status of the policy acknowledgments, and nudge users who have not acknowledged. If you need a user to be able to manage some campaigns but not all, you would use the Campaign Manager user type.|
|End User||End Users do not log into the KCM console. They receive policy documents via email.||
End Users are simply added to KCM for the purpose of receiving policies by email. Using the link from the recipient's email, End Users read and acknowledge policies. This acknowledgment is recorded in KCM, within the associated policy campaign.