Roles control access to features and capabilities of the system: not all users can create, read, update, and delete records and tables. Only admin and security_admin roles have access to all capabilities.
Create roles
Role required: security_admin. |
To create a role, follow the steps below:
- Navigate to User Administration → Roles.
- Click New and fill in the form.
- Click Save or Save and Exit to apply the changes.
Role form fields
| Field | Mandatory | Description |
|---|---|---|
| Name | Y | Enter a name of the role. |
| Elevated Privilege | N | Select this checkbox to make this role available for an elevation in the user menu. |
| Description | N | Type a brief description of this role. |
Configure roles
You can configure the "out-of-box" roles and the access they have by:
- creating ACL rules. They allow or restrict access to specific objects and operations.
- creating user criteria that define access conditions to specific objects, content items and categories.
- setting the access to the portal or the agent interface within the portal context.
- creating business rules to control updates, insertions, and deletion of records.
If you want a specific role to have access to objects that other roles have access to, create the record in the Role Contains (sys_role_contains) table.
- Navigate to the role record that you need.
- In the Related Lists area, open the Role Contains tab.
- Click New and fill in the fields.
- Click Save or Save and Exit to apply the changes.
Role Contains form fields
| Field | Mandatory | Description |
|---|---|---|
| Role | Y | Specify a role that you need to be extended. |
| Contains | Y | Specify a role that will be an extension. |
As a result, the role has its settings with the settings of the other role it contains. See the Role Structure article to learn more about role authorities and responsibilities.