Skip to content

Commit 0800169

Browse files
Maddy-CloudflareMaddy-Cloudflare
authored
[Email Security] Add ZT note (#19672)
* [Email Security] Add ZT note * Add note to CF Fundamentals page
1 parent 9d833a4 commit 0800169

File tree

2 files changed

+5
-1
lines changed

2 files changed

+5
-1
lines changed

src/content/docs/cloudflare-one/roles-permissions.mdx

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -22,6 +22,10 @@ Only Super Administrators will be able to assign or remove the following roles f
2222
| Cloudflare Zero Trust Read Only ||||||||
2323
| Cloudflare Zero Trust Reporting ||||||||
2424

25+
:::note
26+
The Cloudflare Zero Trust role grants administrator access to all Zero Trust products including Access, Gateway, WARP, Tunnel, Browser Isolation, CASB, DLP, DEX, and Email Security.
27+
:::
28+
2529
### Cloudflare Zero Trust PII
2630

2731
By default, only Super Administrators can view end users' PII in the Gateway activity logs, such as Device IDs, Source IPs, or user emails. No other roles will have the ability to read PII unless Super Administrators explicitly assign the **Cloudflare Zero Trust PII** role to them.

src/content/docs/fundamentals/setup/manage-members/roles.mdx

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -34,7 +34,7 @@ Account-scoped roles apply across an entire Cloudflare account, and through all
3434
| Cloudflare R2 Read | Can read Cloudflare [R2](/r2/) buckets, objects, and associated configurations. |
3535
| Cloudflare Stream | Can edit [Cloudflare Stream](/stream/) media. |
3636
| Cloudflare Workers Admin | Can edit Cloudflare [Workers](/workers/), [Pages](/pages/), [Durable Objects](/durable-objects/), [KV](/kv/) and [R2](/r2/). Also provides read access to Zones, [Zone Analytics](/analytics/account-and-zone-analytics/zone-analytics/) and [Page Rules](/rules/). |
37-
| Cloudflare Zero Trust | Can edit [Cloudflare for Zero Trust](/cloudflare-one/). |
37+
| Cloudflare Zero Trust | Can edit [Cloudflare for Zero Trust](/cloudflare-one/). Grants administrator access to all Zero Trust products including Access, Gateway, WARP, Tunnel, Browser Isolation, CASB, DLP, DEX, and Email Security. |
3838
| Cloudflare Zero Trust PII | Can access [Cloudflare for Zero Trust](/cloudflare-one/) PII. |
3939
| Cloudflare Zero Trust Read Only | Can access [Cloudflare for Zero Trust](/cloudflare-one/) read only mode. |
4040
| Cloudflare Zero Trust Reporting | Can access [Cloudflare for Zero Trust](/cloudflare-one/) reporting data. |

0 commit comments

Comments
 (0)