Roles control access to features and capabilities of the system: not all users can create, read, update, and delete records and tables. Only admin and security_admin roles have access to all capabilities.

Generally, a user inherits a role from the group assigned. Refer to the Group Role article to learn more about it.

Create a role


Role required: security_admin.

To create a role, follow the steps below:

  1. Navigate to User Administration → Roles.
  2. Click New and fill in the form.
  3. Click Save or Save and Exit to apply changes.

Role form fields

FieldMandatoryDescription
NameYEnter a name to a role created.
Elevated PrivilegeN

Check this box to make this role available for an elevation in User Menu.

DescriptionNEnter a brief description of this role.

Configuring roles


You can configure out-of-box roles and the access they have by:

  • creating ACL rules. They allow or restrict access to specific objects and operations.
  • creating User Criteria records that define access conditions to specific objects, content items and categories.
  • setting the access to the portal or the agent interface within Portal Context.
  • creating Business Rules to control updates, insertions, and deletion of records.

If you want a specific role to have access to objects that other roles have access to, you can set it within the Role Contains (sys_role_contains) table.

  1. Navigate to the role record that you need.
  2. In the Related Lists area open the Role Contains tab. 
  3. Click New and fill in the fields.
  4. Click Save or Save and Exit to apply changes.

Role Contains form fields 

FieldMandatoryDescription
RoleYSpecify a role that you want to be extended.
ContainsY

Specify a role that will be an extension.

As a result, the role will have its settings with the settings of the other role it contains. Refer to the Role Structure article to learn more about role powers and responsibilities

  • No labels