Skip to main content
Foundry: Roles Overview
Katie Pilcher avatar
Written by Katie Pilcher
Updated over 2 years ago

Product: Foundry Platform

Roles allow Security Administrators to simplify permission management by assigning multiple Users with the same level of access to your applications, data and resources. Best practice is to assign each user to a role and manage permissions via the role.

Click a link to skip to that section.


The Basics

Let's go through what you see in a role record.

Settings > Security > Users and Roles > Roles

Click a role (will outline in green) then click Edit.

You'll see 3 tabs across the top. The first is General. This includes details such as internal ID, tenant and Description. The Enabled checkbox means you can select this role when adding/editing a user record.

The next tab is Authorization. These settings will apply to all users assigned this role. An admin can determine what custom permissions are allowed per application. These custom permissions enable you to allow, deny, or inherit access to screens or modules within an application.

NOTE By default, authorization is set to Not Specified, meaning Allow or Deny is automatically inherited from another source. However, if authorization is Not Specified across all sources, Deny is assumed and Users will not have access to the application.
โ€‹

The last tab is Identity Claims. You can use Identity claims to filter data to which multiple users have access, ensuring that they only see what applies to them. In the example below, you could change a number of settings for users that have this particular role. Note that you can make these changes on a per user basis, but we don't recommend it. It's better to set these at a role level.


Copy a Role

The easiest way to create a new role is to copy an existing role and make the appropriate changes. It is best to copy any active roles you need to change and then edit the copies.

Note: You need to have administrator privileges to perform these steps.

Settings > Security > Users and Roles > Roles

Select the role you want to copy (will outline in green) then click Copy.

Fill in all the General fields needed to create the new role and then click Next to advance.

Make the desired changes on the Authorization and Identity Claims tabs:

Click Submit to save that new role.


Create a Role

We recommend finding an existing role that is similar and copying it. However, if you need to create a brand new role, follow these steps.

Note: You need to have administrator privileges to perform these steps.

Settings > Security > Users and Roles > Roles

From the Roles screen, click +New Role.

Fill in all the General fields needed to create the new role and then click Next to advance.

Make the desired edits on the Authorization and Identity Claims tabs:

Click Submit to save that new role.

For more details about Roles and other administrator tasks, please click the ? in Foundry and navigate to User Guides > Foundry Platform > Administrator Guide.

Related Articles:

rev: 4/28/22

Did this answer your question?