Roles & Permission (settings UI)
Browse roles, open role detail, and edit custom roles from Settings—without using internal permission codes in day-to-day work.
Administrators use Setting → Roles & Permission to define roles: named bundles of abilities that control menus and actions. Day-to-day users do not need internal identifiers; focus on role names, descriptions, and the grouped checklist of capabilities shown in the product.
If you cannot access this area, contact your organization administrator.
Role list
The page title is Roles and Permission with the description: define roles and control access to features and data.
You can:
- Search roles using the search field.
- Open Filter to narrow by Scope and Status, then Apply or Reset.
- Select New Role when your role allows creating a custom role.
Rows may include a delete or maintenance action for custom roles. Built-in roles may be protected—if an action is unavailable, ask your organization administrator.
Role detail
Open a role from the list. The Role Detail layout has two main parts:
Summary (left)
- Role name and description
- Status (for example active vs inactive labeling shown in the product)
- Type — Custom vs Default
- Code — Short identifier (useful when talking to support or administrators)
- Created and Updated dates
Permissions (right)
Permissions are grouped by area or resource (labels come from your organization’s configuration). Each group can be expanded to show individual capabilities with a short name you can discuss with administrators (“can view reports”, “can manage users”, and so on).
A counter shows how many capabilities in each group are enabled for the role.
💡 Tip: When requesting access, quote the group heading and the capability label you need, plus your current role name.
Edit Role (custom roles)
For Custom roles, Edit Role opens the editor (create flow may also duplicate from an existing role depending on your deployment). Save changes only when you understand the impact; removing capabilities can hide menus or block workflows for every user assigned that role.
If you are not sure which boxes to change, ask your organization administrator.
Troubleshooting
- Cannot create or edit roles: Your account may be read-only for IAM; escalate.
- Users still blocked after role change: They may need to refresh, re-login, or select the correct organization/group; administrators should verify assignment and caching.