Roles and Groups
Allows administrators to manage user access by defining roles, grouping users, and assigning access levels based on company structure and app-level permissions.
Navigation:
Settings > Access Control > Roles and Groups
On the top-right corner, click on New Role and Group to add a new configuration.
The user can define three types of entities: Role, Group, and Access Group.
1. Role
Roles define the job position or function of a user within the system (e.g., HR Manager, Marketing Manager).
Configuration Fields:
| Field | Description |
|---|---|
| Type | Select Role from the dropdown. |
| Role Name | Define the name of the role (e.g., HR Manager). |
| Description | Add a short description about the role's purpose. |
| Applicable Apps | Choose the application(s) where this role will be applicable. |
2. Group
Groups are collections of users, typically formed by departments or teams, to simplify role assignment and access management.
Configuration Fields:
| Field | Description |
|---|---|
| Type | Select Group from the dropdown. |
| Group Name | Define the name of the group (e.g., HR Team). |
| Description | Enter details about the group. |
| Users | Lists users created through the User Master; users can be added here. |
| Roles | Roles (previously created) can be assigned to this group. |
3. Access Group
Access Groups are used to assign permissions at various organizational levels like Project, BU, or Cluster.
Configuration Fields:
| Field | Description |
|---|---|
| Type | Select Access Group from the dropdown. |
| Name | Enter a unique name for the access group. |
| Description | Describe the purpose of this access group. |
| Company Name | Select the registered company from the list. |
| Hierarchy Levels | Assign levels such as Project, Package, IC, SBG, BU, Segment, or Cluster. |
| Mapping | The user can select the App Name and Role from the preloaded lists and associate them with the chosen Access Group by clicking Update. |
Roles and Groups configuration enables efficient management of user permissions, role responsibilities, and operational access, ensuring secure and role-specific app functionality.