Getting familiar with Admin roles and permissions

Any referenced datasets can be downloaded from "Module downloads" in the module overview.

Getting familiar with Admin roles and permissions - Exercise

For an overview of available roles, or to create, edit, copy, or delete roles, open the Role Management dialog box.

  • Click Tools menu > Administration > Global Settings > Security tab > Manage Roles.

View roles and permissions

  1. The permissions associated with each role are listed. Click Close.

Create a role

  1. Click New Role on the Roles Management dialog box.
  2. Enter a name and an optional description for the user-defined role.
  3. Define the role's permissions by adding from the list of available permissions.
  4. Click OK.

Copy a role

  1. Select the role that you want to copy and click Copy.
  2. Edit the role's name and description as needed.
  3. Adjust the role's permissions by adding from the list of available permissions and removing from the list of selected permissions.
  4. Click OK.

Edit a role

  1. Do one of the following:
    • Select the role that you want to change and click Edit.
    • Double-click the role that you want to edit.
  2. Edit the role's name and description as needed.
  3. Adjust the role's permissions by adding from the list of available permissions and removing from the list of selected permissions.

Create a group

Create a new user group. You can name the group, enter the email distribution addresses for the group, assign roles to the group, and identify which vaults the group can access.

Note: You must be assigned the role of Administrator to perform this operation.

  1. Select  Tools > Administration > Global Settings.



  2. In the Global Settings dialog box, select the Security tab.
  3. Click Manage Access.
  4. In the User and Group Management dialog box, select the Groups tab and click New.
  5. In the New Group Profile dialog box, enter the information for the new group:
    • Name for the group.
    • Email distribution list address for the group. You can also enter a list of individual email addresses separated by a semicolon (;).
  6. Click Linked to for associating the group to an Active Directory group. Refer to Link to an Active Directory Group for more information.
  7. Click Roles and assign one or more roles to the group.

    Note: As a best practice, always assign roles to groups to make user permission management easier.
  8. Click Vaults and select one or more vaults to which the group has access. Every member of the group has access to the vaults assigned to the group.
  9. A group can be a member of another group. Click Groups and select one or more groups to which this group belongs.
  10. Click **Group Manager** to assign a user as a group manager.



  11. Select the Enable group checkbox to activate the group.
  12. Click Add to add members to the group.
  13. From the Add Members dialog box, select the users to include in the group, and then click OK.
  14. Click OK.