Best Practices for Administrative Separation within a Tenant

Question

Hey everyone, 
 Looking for insights into Sophos best practices regarding administrative separation within a tenant. Is there a way to create an admin (or multiple...) who can manage only a specific group of computers/servers? 
 If not, what's the recommended alternative? I suppose we could set up a separate tenant but that sound like an awful workaround with a lot of other negative implications. 
 Appreciate your experiences and advice! 
 Thanks! 
 Ben

GlennSen · Answer

Hello, Thank you for reaching out to our community forum. It isn&rsquo;t possible to create a separate admin within the tenant. The only option for the tenant was to create and assign a role described in this documentation. H owever, we have "Sophos Central Enterprise Dashboard", which will allow you to create a Sub-estate per tenant that has its admins. You may refer to the below link on how to activate EDB and how it works. https://support.sophos.com/support/s/article/KB-000036709?language=en_US - Activate Enterprise Dashboard 
 https://doc.sophos.com/central/enterprise/help/en-us/Dashboard/index.html - EDB Documentation.

Best Practices for Administrative Separation within a Tenant

Top Replies