Roles

Learn about roles and how to assign and revoke roles to users.

Manage Roles

User roles define the information that a specific user assigned to the role can view and what they can do in Cloud Elements. Each role includes a list of privileges that you can add or remove depending on how you want to manage roles in your organization.

Cloud Elements supports the following roles:

  • Organization Administrator — Manage all aspects of security; create elements, formula templates, and virtual data resources for the organization; and can access all logs in Activity.
  • Account Administrator — Performs the same function of the Organization Administrator, but only on the account where they are the administrator. Account Administrator cannot create or manage accounts or set security rules.
  • Default User — A non-administrator role for users in non-default accounts.
  • Organization User — non-administrator users in the default company account. Users with the Organization User have no different privileges than other default users.

Update Permissions Assigned to Roles

You can customize the permissions assigned to the Cloud Elements roles. You can grant access to new permissions or remove access from existing permissions.

To update permissions assigned to roles:

  1. Access the Security page.

    Note: If you don't see Security, your assigned role does not have access to it. 

  2. Click the Roles tab.
  3. Click the check boxes to assign or remove permissions.
  4. Click Update Roles.

Update User Roles 

You can assign a user as an organization or account administrator or remove roles. If you want to assign a user as an organization administrator, they must be in the Company Default Account.

Using our APIs?

Change a users role with PATCH /users/{id} .

Remove a role with DELETE /users/{userId}/roles/{roleKey}.

Assign a role with PUT /users/{userId}/roles/{roleKey}.

To update a user's role or information:

  1. Access the Accounts Edit page.
  2. Click Edit Button.
  3. Update the user role or information. To reassign the user to be an organization or account administrator, select Org Admin or Account Admin
  4. Click Save.

Role-Based Access Control to Element Instances

The Cloud Elements platform allows users to view, use, modify, and delete element instances from the same account, provided the user has a role with one or more of these privileges active:

PermissionDescription
viewAccountElementInstancesAbility to view instances from users of the same account
useAccountElementInstancesAbility to use instances from users of the same account
editAccountElementInstancesAbility to modify instances from users of the same account
deleteAccountElementInstancesAbility to delete instances from users of the same account

Changing User Permissions

While these element-related privileges are granted to account administrators by default, but they and other permissions can be disabled. In order to enable or disable changes to user permissions, users must have the necessary permissions to do so. To enable or disable element-related or other permissions, follow these steps:

  1. After logging in to Cloud Elements, navigate to the Security page.
    Security button

  2. From the Security page, click the Roles tab.
    Security page Roles button

  3. On the Roles tab, toggle permissions on and off using the checkboxes in the Enabled column, and then click Update Roles.
    Update Roles button