Admin Security Add User/Group Dialog Box
On the Admin Security Add User/Group dialog box, which opens when you click Add User/Group on the Admin Security view, you assign initial permissions to a user or group for all admin roles.
First you use the search fields to locate the user or group that you want to add, and then select the appropriate permissions from the Assign rights fields for each listed role, and then click Assign Rights .
To assign rights to Microsoft Entra ID users and groups, Make sure that Microsoft Entra ID is configured successfully. Once the configuration is complete, the tenant name will be visible in the drop down, enabling you to proceed with assigning rights.
Under Assign rights , the following roles are listed:
| Role | Permission |
|---|---|
| Site Management | Can view, create / modify, or delete configuration items under the following subnodes of Site Management : Site Management > Admin Security Site Management > Catalog Security Site Management > Settings (all subnodes except Active Directory) Site Management > Imported Users and Computers Site Management > Logs Site Management > ITSM & Cloud Integration Site Management > Categories Site Management > Commands and Actions |
| Active Directory | Can view, create / modify, or delete configuration items under the following nodes: Site Management > Active Directory Site Management > Settings > Active Directory |
| Site Communication | Can view, create / modify, or delete items under the following nodes: Site Management > Communication |
| Catalog Management | Can view, create / modify, or delete items under the following nodes: Catalog Management > Create New Catalog Item Catalog Management > Current Catalog Items Catalog Management > Catalog Catalog Management > Catalog Categories Catalog Management > Expressions Catalog Management > Workflows Catalog Management > Workflow Status |
| Approval Groups | Can view, create / modify, or delete items under the following nodes: Catalog Management > Approval Groups |
| Question Management | Can view, create / modify, or delete items under the following nodes: Catalog Management > Questions |
| Compliance Management | Can view, create / modify, or delete items under the following nodes: Compliance Management |
| Deployment Management | Can view, create / modify, or delete items under the following nodes: Deployment Management |
| Report Management | Can view, create / modify, or delete items under the following nodes: Report Management |
| Rest API | Enables access to all REST API endpoints. |
Note that permissions are the “most restrictive model”. For example, if a user is in two groups where one is granted Read permission and the other granted Write permission, the permissions will be Read; they are not cumulative.
See Also