| Info |
|---|
Roles are configured in Setup / Users & Accounts / Users / Roles |
...
As of version 10.5.0 the system is configured with four roles (Read Only Core, Admin, API Admin and API ReadOnly). These roles use core role groups to define their permissions. These default core roles cannot be modified or deleted.
Prerequisites
Role groups must be setup in order to assign permissions to roles
...
The information in this panel reflects the currently selected role. From here you can change role details (fields will display a red left border if a value is required and purple text if the field is read-only and cannot be modified).
...
Name: a descriptive name for the role (administrator, account manager, etc.)
Type: indicates if the role provides permissions to access the Application UI (AdminPortal) or provides API permissions. A role can only be setup with either Application or API role groups, a role cannot be configured with both types of role groups
SCIM Role: used in systems integrated for single sign-on access. This setting indicates that the role was created when a group was pushed from an identity provider portal to LogiSense Billing. The role group created for the SCIM Role will have the SCIM Default role group permissions assigned to it (see the role groups screen help for details on the SCIM Default role group setting). SCIM Roles can be renamed as needed to provide a meaningful role name, but other settings cannot be modified (e.g. adding or removing role groups assigned to the role). Changes to the permissions on the SCIM role can be performed as normal by editing the role group permissions for the role group attached to the SCIM role
Role Groups tab
On this tab you can view, add and delete role groups which define the permissions granted to the role. You can only select role groups that match the role type (e.g. if the role Type is set to ‘API’ then only role groups configured with the Type ‘API’ will appear in the Role Groups drop down field).
...