User, role and group maintenance

The Users, Roles, Groups room allows you to define the number of users who are able to work with the system and to control user permissions. User management is role-based. A complete authorization configuration will require:

• User management and assigning predefined roles and groups to the users (in the Users tab)

• Roles management including permission configuration and combination of roles (in the Roles tab)

• Groups management including creation and configuration of groups (in the Groups tab)

Roles in fact define permissions for system access based on RAQL queries. For details also see Query language RAQL in the corresponding system manual [SM IS].

Depending on the customized environment and the permissions which are granted to the current administration user, user maintenance may be restricted in parts. In common scenarios, there will be a fixed number of roles. In some cases there may even be a fixed number of users where it may only be possible to manage the predefined roles with the predefined users. Alternatively, user maintenance may completely be deactivated and the administration panel may only be used to inspect the existing configuration. See chapter Getting started: users and roles configuration for a detailed description of the initial users and roles configuration.