Managing Roles
Individual permissions (tasks/actions) are gathered together into roles. Permissions for users and groups are then granted by means of these roles. Analytics includes two types of role:
-
Global Roles: Determine in general the tasks/actions that a given type of user should be able to perform in Analytics.
-
Folder Roles: Determine the tasks/actions that the user should be able to perform on resources within specific folders.
For example, if a user has the Global Basic role, this grants them the ability to run reports. It also grants the ability to view reportable resources (such as agents), which is necessary for populating a parameter set for the report. However, the user can only perform these actions within specific folders for which they also have a suitable folder role. The user must have a report-running role for the folder in which the report is located, and they must have a resource-viewing role for the folder containing the reportable resources.
This ensures that access to different parts of the folder hierarchy can be controlled. It also means that the same user can be granted different levels of access in different parts of the folder hierarchy.
For more information about the different types of roles and permissions, see Permissions.
Related Information