Apr 28, 2023
726
Once a role has been created, you may want to rename it or change the permissions associated with it. Only users with the Admin role can edit custom roles.
To edit a Custom Role, follow these steps:
- Select Settings from the left navigation bar
- Select Roles and Permissions
- Open the role you would like to edit.
- Roles such as Admin are non-editable and cannot be modified. You can identify editable role by verifying the role Type on the Roles and Permissions screen.
- Roles such as Admin are non-editable and cannot be modified. You can identify editable role by verifying the role Type on the Roles and Permissions screen.
- Select Edit at the top to edit the Name and Description
- Select Edit in the Permissions section to update the role's permissions
- After a role has been assigned, the scope assigned to the user cannot be modified. Review the NOTE section below.
- Click Save to apply your updates
NOTE: After a role has been assigned you cannot modify a custom role’s permissions if the permission you are attempting to add has a narrower scope context than that of the role.
For example, sample Role A below has a Scope of Tenant and Branch, because the Role’s scope is determined by its narrowest shared permission scope.
- You can add a permission with Tenant, Branch scope context to maintain its scope context.
- You can add a permission with Tenant, Branch and Group scope context to maintain its scope context. The scope will not expand, since not all of the permissions share the Group Scope.
- You can remove all permissions with Tenant, Branch scope and leave only permissions with Tenant, Branch and Group scope. This will expand the role's access context to Tenant, Branch, Group.
- You cannot add a permission with Tenant only scope context as it will result in the following error message:
Narrowing the Scope of a role is not allowed, as it would restrict previously granted access context levels.