You can specify whether device information (i.e., device hostname, device owner, and device name) are visible or obfuscated for an admin when they view dashboards, reports, or insights.

If admins need to view device information, they must have an auditor grant them permission to do so. To learn more, see About Auditors.

Prerequisites

To configure this setting for an admin account, your own admin account must meet the following conditions:

• Your admin account must have an admin role that has Full permission to Administrators Access. To learn more, see Adding Admin Roles.
• Your admin account must have organizational admin scope. To learn more, see About Admin Scope.
• If your organization has the admin rank feature enabled, and you're configuring this setting for another admin account, that admin must have an admin rank lower than or equal to your own admin rank.

Obfuscating Device Information for Admins

To obfuscate device information for an admin viewing dashboards, reports, and insights, you must enable device information obfuscation for the role assigned to the admin. In other words, you must edit the admin role assigned to the admin account or create an new role.

To obfuscate device information for an admin, do one of the following:

• Assign the admin an existing role with device information obfuscation enabled
  1. Go to Administration > Role Management.
  2. In the Device Information column, check which existing admin roles have device information Obfuscated. Ensure that all other permission settings for the existing admin role are appropriate for the admin you want to assign this role to.
     See image.

     

     Close
  3. Go to Administration > Administrator Management.
  4. Click the Edit icon next to the admin you want to enable device information obfuscation.
     See image.

     

     Close

  The Edit Administrator window appears.

  5. In the Edit Administrator window, under Role, choose the appropriate admin role with device information obfuscation enabled. In this example, it's HR-Access Control.
     See image.

     

     Close
  6. Click Save to exit the window.
  7. Click Save and activate the change.

  Close
• Enable device information obfuscation for an existing role
  1. Go to Administration > Administrator Management.
  2. In the Role column, check which admin role is assigned to admin you want to edit. Also, check which other admins have been assigned this specific role, and ensure you want device information obfuscation enabled for those admins as well.
  3. Go to Administration > Role Management.
  4. Click the Edit icon next to the role assigned to the admin you're editing.
     See image.

     

     Close

  The Edit Administrator window appears.

  5. In the Edit Administrator Role window, under Device Information, choose Obfuscated.
     See image.

     

     Close
  6. Click Save to exit the window.
  7. Click Save and activate the change.

  Close
• Add a new role with device information obfuscation enabled and assign it to the admin
  1. Go to Administration > Administrator Management.
  2. Click the Edit icon next to the admin you want to enable device information obfuscation.
     See image.

     

     Close
  3. Under Role, click the Add icon.
     See image.

     

     Close

  The Add Administrator Role window appears.

  4. In the Add Administrator Role window, follow the instructions for adding a new admin role, including how to enable device information obfuscation.
  5. In the Edit Administrator window, choose your new admin role.
  6. Click Save to exit the window.
  7. Click Save and activate the change.

  Close
• Add a new admin role and account

  For convenience, Zscaler recommends creating the admin role first because you'll assign the role to the new admin.

  1. Add a new admin role with device information obfuscation enabled
  2. Add a new admin account

  Close