Difference between revisions of "Working with Roles"

Revision as of 18:52, 14 May 2013

Application users generally fall into categories, or roles. A person in a given role needs permissions to work with some kinds of data, but typically doesn't need to work with other kinds data (or even see it).

It is common for new roles to be added over time, and for existing roles to evolve as the organization grows and business procedures are refined.

Users that have the Access Control/User Management permission can manage user roles.

Role Management Restrictions

The ability to manage roles is subject to the Permissions Hierarchy restrictions.

Add or Edit a Role

To add or edit a Role:

Click > Administration > Access Management > Roles.
The currently defined roles are listed.
Click the [New Role] button to add a role;
Optionally, click an existing role to edit the role
Specify the Role Settings (described below)
Click [Save]

Note:
The System Administrator role comes with the platform.

Clone a Role

You can clone a role in order to save time in creating a new role that has similar settings.

To Clone a Role:

Click > Administration > Access Management > Roles
Click the name of the role you want to clone. The detail page for that role opens.
Click the [Clone] button.
The Add Role page opens, displaying the settings from the Role you cloned.
Specify the Role Settings (described below)
Click [Save]

Delete a Role

To Delete a Role:

Click > Administration > Access Management > Roles
Click the name of the role you want to delete; the detail page for that role opens
Click the [Delete] button at the top of the page.
A confirmation dialog appears.
Click [OK] to delete the role.

Role Settings

Role Information

Name: The name of the role as it will appear in the platform
Description: Text that describes this role and its settings (permissions)

Role Permissions

These are the permissions that can be specified for a role:

Record Access Permissions

For each object, specify the ability to Create, and Delete records.

If Record Level Visibility is enabled for an object, specify the ability to Control Visibility.

(In general, the ability to access an object implies the ability to view any of the records it contains. However, if Record Level Visibility is enabled, a role can also specify the ability to set visibility criteria for individual records, in order to restrict visibility of that record to a designated audience.)

Access to Records Owned by Others Within the Team

Specify the ability to Update, Delete, and View records contained in a each object.
(These permissions apply to records owned by a different member of the team.)

@@ Line 10: / Line 10: @@
 ===Add or Edit a Role===
 To add or edit a Role:
-#Click '''Designer > Roles.'''<br>The currently defined roles are listed.
+#Click '''[[File:GearIcon.png]] > Administration > Access Management > Roles.'''<br>The currently defined roles are listed.
 #Click the '''[New Role]''' button to add a role;
 #Optionally, click an existing role to edit the role
@@ Line 23: / Line 23: @@
 To Clone a Role:
-#Click '''Designer > Roles'''
+#Click '''[[File:GearIcon.png]] > Administration > Access Management > Roles'''
 #Click the name of the role you want to clone. The detail page for that role opens.
 #Click the '''[Clone]''' button.<br>The Add Role page opens, displaying the settings from the Role you cloned.
@@ Line 31: / Line 31: @@
 ===Delete a Role===
 To Delete a Role:
-#Click '''Designer > Roles'''
+#Click '''[[File:GearIcon.png]] > Administration > Access Management > Roles'''
 #Click the name of the role you want to delete; the detail page for that role opens
 #Click the '''[Delete]''' button at the top of the page.<br>A confirmation dialog appears.

Search

where to start

Feedback

customize and design

resources

Tools

Personal tools