Skip to main content
Skip table of contents

Roles

The role-based access model makes it possible to grant the user the necessary permissions according to their role in the company. The role determines access to the system interfaces and actions with data.

The right to view and modify the Roles directory, as well as assign roles to the corresponding positions, is granted to employees with the role of Owner, Administrator and Unit Administrator (for the corresponding unit).

The newly created position is automatically assigned the following roles: “User, all rights”, “User, no signature”, “User, view only”, “User, Score” and “Communications with counterparties”.

System roles

The Roles directory shows the mandatory, so-called system roles for which you cannot change the permissions. However, you can create custom roles and define individual permissions for them.

t0_145.png

The special role of the Owner

An employee with the Owner role has the maximum possible rights in the company, has the ability to manage all settings in the company, including the right to delete the company account. There can be several positions in the company with the Owner role.

Only an employee with a regular appointment to a position and the role of Owner can assign the role of Owner to another employee.

An employee with the Administrator role cannot restrict the rights of a position with the Owner role. An employee with the Owner role cannot be restricted in rights by other employees with the Owner role. Only the employee with the Owner role can disable this role and thus deprive himself of the privileges of this role.

There are the following features of disabling the Owner role:

  • if an employee with a regular appointment and the role of Owner has not been active in the company for the last 14 days, the role of Owner can be disabled for him/her by another employee with the role of Owner or Administrator.

  • If no employee with a regular appointment to the position and role of Owner has been active in the company for the last 7 days, the role of Owner may be assigned to another employee. This action can be performed by an employee with the Administrator role.

Department administrator

The Administrator role can only be assigned by an employee who has a regular appointment with the Owner role.

A department administrator has configuration rights for positions and employees only for the department in which he or she is defined as an administrator.

The department administrator has access only to the part of the organizational structure that contains information about the department that he/she is allowed to administer, as well as to the list of employees in the part of his/her department, as well as to employees who do not have valid assignments.

The department administrator has rights:

  • creating and changing positions, including setting up subordination rules;

  • adding an employees and inviting them to a position;

  • blocking and unblocking employee access to the company;

  • creating, changing and terminating an employee's appointment to a position.

A position that has been assigned the role of Department Administrator will have access to the department and system directories after this position is added as an administrator to certain department.

To grant this right, you need to add the corresponding position to the Administrators tab from the line of the corresponding department in the Organizational structure.

t0_1461.png

The role of a department administrator can be useful when a company has a large organizational structure. An employee with this role will be able to manage the settings of a specific department only, without having access to the rest of the organizational structure.

The same position can be assigned as an administrator of several departments.

The right to administer a department automatically extends to subordinate departments.

Changing the roles of the position and the employee

Adding and deleting roles for a position is done by changing the properties of the position in the Organizational structure using the Edit button.

t0_1501.png

When appointing an employee to a position, the employee may not be assigned all the roles that the position has.

t0_153.png

Employees who are appointed to the same position may have different roles available to them according to their appointments.

Custom roles

Custom roles allow you to individually configure the permissions that will be granted to the respective positions.

t0_1551.png

Creating a new role

Creating a new role is available to the Company owner, administrator and company employees with the right to work with the directory.

A new role in the system is created in the Roles directory interface by clicking the +Role button.

t0_1561.png

Setting up permissions for a role

You can configure permissions for a role in the Roles directory by clicking the Edit button.

t0_1601.png

To assign the appropriate rights to a role, select or deselect the checkbox in the list of permitted actions and save the changes.

By setting up permissions for a custom role, you can give certain employees access to view directories only, while others can view and modify data in them.

Deactivating and deleting a role

A role can be deactivated if it is not used in any of the active company positions. You can delete a role if it was not used in the configuration of positions. A deactivated role can be reactivated.

t0_1621.png

Deactivated roles will be hidden from the list of roles, but you can see them by enabling the Inactive filter.

t0_1631.png

 

 

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close