User Roles

NAVIGATION  System > User Security > User Roles

The User Roles page creates and deletes user roles. Within an user role you can select:

• Members - Assign or remove members for a user role.
• Access Rights - Select the access rights for a user role. Access rights determine the functions a user can access.
• Role Types - Assign or remove role types for a user role. Access rights are restricted by the set of licensed role types assigned that user role.

VSA users can belong to one or more VSA user roles. Each user role must be assigned to at least one user role type.

• A VSA user logs on with both a user role (functions they can perform) and a scope (scope data objects they can see).  Membership in a user role and a scope is independent of each other.
• VSA users can also be assigned to user roles using the System > Users > Roles tab.
• See System > Users for a discussion of the Master user role.
• Restrict access to User Roles and Roles for all roles except roles responsible for administrating function access.

Middle Pane

You can perform the following actions in the middle pane of Roles:

• New - Create a new role.
• Copy Permissions - Copy the permissions from any other role. By default, all objects in the access tree are enabled, so copying permissions only has a visible effect if some of the objects in the role being copied are disabled.
• Rename - Rename the role. Role names can only be all lower case.
• Delete - Delete the selected role. All VSA users must be removed from a role before you can delete it.

Related Pages

The following policies are assigned by user role:

• Access to the entire VSA by weekday and hour using System > Logon Hours
• Remote control user notification using Remote Control > User Role Policy
• Field permissions for editing tickets in Ticketing > Edit Fields and Service Desk > Role Preferences
• Sharable objects—such as procedures, reports, monitor sets and agent installation packages—can be shared by user role.