User Roles define privileges that are assigned to users to determine their access to system capabilities. These User Roles enable system administrators to delegate responsibilities, supervise configurations, and ensure controlled access to capabilities.
By default, four User Roles are generated automatically by the system:
- System Admin: provides full administrative access to system configuration.
- Standard User: provides basic access for general users with configurable privileges.
- Config Admin: provides limited access to administrative privileges.
- Inventory Admin: provides access to manage Inventory.
User Roles are organized in different tabs according to a specific capability with available roles and their assigned privileges: Administration, Author, Materials, Inventory, Inventa, HELM Monomer Libraries, In Vitro Analysis, and Spotfire for Signals.
For basic configuration, the tabs to configure are Administration and Author. The following lists show the available roles and privileges for each.
- Administration: Defines responsibilities related to who can access the system configuration.
Note: A best practice is to have at least two system administrators. This will maintain full administrative access to the tenant even if an administrator leaves or is out of the office. There is no additional cost to having two users with administrator access.
-
- Configure System provides access to the Signals Configuration menu on the Home page. Even with this permission enabled, users need additional specific privileges to modify settings, otherwise the configuration page appears empty.
- Manage System Templates includes Notebook, Experiment, Worksheet templates, Table templates, and other System Object templates.
- Manage Groups makes the group menu icon available for users to create and manage User Groups.
- Manage Attributes provides access to configure Attributes, Group Associations, and read (not edit) Security Policy.
- Author: Defines responsibilities related to objects such as Notebooks and Experiments.
Share allows users to share Notebooks and/or Experiments. It overrides anything set within the Security Policy.
Note: When Share is disabled from the Standard User Role, administrators can still grant read privileges through the Security Policy.
Read Dependent Share allows sharing only to users who already have read access via the Security Policy.
Note: This option is recommended to prevent users from overriding the Security Policy.
Note: When this permission is granted to a role, the Share privilege must be deactivated. Be aware that Share will override the read dependent share, allowing users to share to other users without read access.
- Add/Edit/Delete Comments allows users to add, edit, and delete comments within System Objects such as Notebooks and Experiments.
Broad User Search allows users to search for users across email domains.
Note: If deactivated, users with different email domains can be searched only by typing the complete email address. If activated, users with different email domains can be searched by typing other users’ first or last name, as well as the complete email address.
- Share Templates allows users to share personal text and Experiment templates.
- Move Experiments.
- Trash Experiments/Notebooks.
- Export Notebooks.
- Archive and Return From Archive allows users to archive closed Experiments.
- Trash Mandatory Entities allows users to edit Experiments created with a system template and delete items that were marked as mandatory.
- Clone Entities: allows users to copy/copy-partial Experiments and information items within Experiments.
- Save as Template: allows users to save existing Experiment as a personal template.
Comments
0 comments
Article is closed for comments.