Domain administration / Users and roles / Managing roles

Managing roles

You can create custom roles with a custom set of permissions to control the specific actions certain users can perform or the specific application, dashboards, or panels they can access in each domain.

Create a custom role

As an example, let's create a custom role specifically designed to grant access to the application's features related to creating panels.

Go to Administration → Roles. All existing roles, including the default and custom, are listed in vertical tabs on the left. The view area shows the permissions of the selected role, divided into different tabs that represent different accessible areas of the Devo web app. To create a new role, click the New Role button on the top right of the window.
Enter a Name and Description for the new role.
Then, in the Permissions tab, you can see that most of the permissions have a View and a Manage level to better define the actions you want the users to perform when they have that role assigned. Check the boxes of the required permissions(s) and level(s).

Hover the mouse over a permission in the list and click the information icon to see its description.
For a complete list of the permissions that you can add to a custom role and the differences between their View and Manage levels, go to Role permissions.
In the rest of the tabs, you can assign specific resources (applications, dashboards and panels) to the role. Learn more below.
If you want to give the role access to the finders in Data Search, you must add the Finders view-level permission to the role. When you do it, the Finders drop-down list will appear. Select Default to give the role access to the default finder, or choose one of the custom finders available in your domain.

Why am I not seeing the Finders drop-down list?

Note that the Finders drop-down list will not appear if the role has the Finders manage-level permission assigned, since this permission allows users to manage all the finders in the domain, including custom finders. The role must only have the Finders view-level permission.
You can allow the role to choose from the predefined query priority range. Scroll down to Query priority and mark the Manage box.

Once marked, scroll to the bottom of the page and choose the query priority range and default level. You can find more information in the Query priority article.
Click Create. The new custom role will appear in the list of roles on the left. You can now assign this role to new or existing users.

Assign resources to a role

Both default and custom roles can be given access to Devo applications, dashboards, panels and Activeboards. Public resources in your domain will appear listed in its corresponding tab and you can make them available to the users with specific roles.

Note that the Activeboards tab will not appear if you have not marked as shareable at least one of them. Learn how to do it in the Sharing Activeboards article.

On top of that, the list of Applications, Dashboards, Panels and Activeboards are not included in the role tabs by default when you create them. You need to make them public first. Each type of resource has a different way to make it public. Go to the corresponding articles (applications, dashboards, panels and Activeboards) to learn more about their specific sharing options.

Select a role from the left area and click the Applications, Dashboards, Panels or Activeboards tab.
The list on the left contains the available resources while the list on the right contains the resources assigned to the role. Select the desired resource and click the corresponding arrow to move it from one list to the other. In the case of Activeboards, the procedure to assign them is the same as with Permissions (checkboxes with View and Manage levels).
Click Apply changes.

If you try to select another role without applying the changes, you will get a warning message prompting you to save them if you do not want to lose them.

Clone an existing role

Another way of creating a new role is by cloning an existing role that already has a similar set of permissions and allowed applications. You can clone both default and custom roles.

Go to Administration → Roles.
Select the original role from the list of vertical tabs on the left.
Click the Clone Role icon in the upper-right. of the window. An exact copy is created with the same list of permissions and resources and appears on the list of roles to the left.
Select the new role from the list on the left and click the Edit icon next to Name and Description. Write the desired name and description and click outside the field to apply the changes.
Make the desired changes to the permissions and resources and click Apply Changes.

If you try to select another role without applying the changes, you will get a warning message prompting you to save them if you do not want to lose them.

Modify or delete a custom role

When you modify or delete a custom role, the permissions for users with that role will change the next time they log in to the domain.

Go to Administration → Roles.
Select the custom role that you want to modify or delete from the list of vertical tabs to the left.

- To delete the role, simply click the Delete icon in the upper-right of the window and accept the warning message that appears.
- To modify the role, change the permissions and resources granted for the role or edit the name or description. Then, click Apply Changes.

Download as PDF

Did you find what you were looking for?

If not, please let us know what you need. Your feedback will help us to improve.