You are using an unsupported browser. Please update your browser to the latest version on or before July 31, 2020.
close
You are viewing the article in preview mode. It is not live at the moment.
Home > Manage Users & Settings > Console > Custom Roles > Custom Permissions: A Deep Dive
Custom Permissions: A Deep Dive
print icon
Claire Son
Jan 02, 2025
views icon 1027

Console lets you build custom user roles with specific permissions that suit your organization's needs.

 

In this article, we'll cover some general custom roles, discuss roles that require specific enabled features, and then explain why some permissions require other permissions in order to work properly.

General Custom Roles

Roles that Troubleshoot User Issues

If you want a user to troubleshoot learner issues, grant these permissions:

  • Read Users

  • Update Users

  • Read Licenses

  • Update Licenses

  • Read Enrollments

  • Reset Enrollments

  • Update Enrollments

  • Read Activities

  • Reset Activities

  • Impersonate Users

    • Note: this allows a user to impersonate admins, but will not grant any admin permissions the user doesn't already have

Roles that Supervise the System

A user that only needs to supervise operations should only get "read" permissions, like:

  • Read Users

  • Read User Roles

  • Read Licenses

  • Read Enrollments

  • Read Activities

  • Read Plans

  • Read Vouchers

  • Read Subscriptions

  • Read Content Packages

  • Read Login Trackings

Permissions that Require Feature Access

Some permissions will only be available if specific features have been enabled. More information about feature accesses can be found in our articles here.

 

Other features will need to be purchased. Contact your BenchPrep Customer Success Rep for more information about turning them on.

 

Permission

Required Feature

Create Branches
Read Branches
Update Branches
Delete Branches

Create Groups
Read Groups
Update Groups
Create Branch Plans
Read Branch Plans
Update Branch Plans

 ConsoleB2B
Manage Assignments
Grade Assignments		 Assignments
Create Materials
Read Materials
Update Materials
Delete Materials		 Materials
Create Curriculums
Read Curriculums
Update Curriculums
Delete Curriculums		 Curriculums
Read Product Categories
Manage Product Categories		 Product Categories
Manage BigCommerce BigCommerce

Create Developer Tokens

Read Developer Tokens

Update Developer Tokens

 Developer Tokens
Create Webhooks
Read Webhooks
Update Webhooks		 Webhooks
Create LTI Tools
Read LTI Tools
Update LTI Tools
Delete LTI Tools		 LTI Tools

Create Recognition Types
Read Recognition Types
Update Recognition Types
Delete Recognition Types

 Recognitions

 

Permissions that Need Other Permissions

Certain permissions need other permissions in order for the role to be functional. In this article, we'll cover those particular cases.

 

If a role will perform an action with a resource, the role will also need the "read" permission for that resource. For example: if you give a role Update Users, you will also need to give it Read Users. Otherwise, the user couldn't view what they plan to update.

 

Permission

Required Permission
Console Access Console
Read Roles
Read Permissions

NOTE: All above permissions are required for any Console Role
Create Users
Update Users
Impersonate Users
Deactivate Users
Activate Users
Read User Roles
Create Licenses
Read Licenses
Read Subscriptions
Read Activities
Read Enrollments
Read Login Trackings		 Read Users
Create User Roles*
Delete User Roles		 Read User Roles
Update Licenses
Remove Licenses		 Read Licenses
Reset Enrollments
Update Enrollments		 Read Enrollments
Reset Activities Read Activities
Create Plans Read Plans
Update Plans Read Plans
Read Content Packages**
Create Vouchers
Update Vouchers		 Read Vouchers
Create Subscriptions Read Subscriptions
Create Branches
Update Branches
Delete Branches		 Read Branches
Create Groups
Update Groups		 Read Groups
Create Branch Plans
Update Branch Plans		 Read Branch Plans
Update Content Packages
Deactivate Content Packages		 Read Content Packages
BluePrint
Read Materials
Read Curriculums		 Access BluePrint
Create Materials
Update Materials
Delete Materials		 Read Materials

Create Curriculums
Update Curriculums
Delete Curriculums

 Read Curriculums
Create Communications Read Communications
Read Content Packages (if creating in-app or banner message for specific courses)
Read Content (if creating trigger event based in-app or banner message)
Update Communications
Delete Communications		 Read Communications
Manage Product Categories Read Product Categories
Create Custom Pages
Update Custom Pages
Delete Custom Pages		 Read Custom Pages
User Dashboard
Branch Dashboard		 Read Reports
Psychometric Dashboard Read Psychometric Dashboard
Utilization Dashboard Read Usage Dashboard
Manage BigCommerce Read Integrations
Create Developer Tokens
Update Developer Tokens		 Read Developer Tokens
Create Webhooks
Update Webhooks		 Read Webhooks
Create LTI Tools
Update LTI Tools
Delete LTI Tools		 Read LTI Tools
Create Recognition Types
Update Recognition Types
Delete Recognition Types		 Read Recognition Types

 

*If a user has the Create User Roles permission, they can assign User Roles that have the same set or a sub-set of their own permissions.

**In addition to viewing all courses within a tenant, Read Content Packages allows users to view, add and remove courses in a plan.

Feedback
0 out of 0 found this helpful

Tags

close button
scroll to top icon