Role
With Role, you can assign roles to users or security groups. Roles are used to give users or groups of users specific permissions to perform certain actions within your system for instance:
- Cockpit permissions
-
Limit users to utilize specific tools exclusively within the Cockpit.
- Access restrictions
-
Restrict users accessing applications, tiles, and tile groups.
- Controlled applications
-
Restrict actions within applications, allowing users to perform only specific actions based on their assigned roles.
Hierarchy of security groups and roles
It is important to mention that security groups have a higher hierarchy than roles, which means all permissions will be overridden by the corresponding security groups, regardless of the assigned roles the user has.
Global Admin setting
Each instance of Neptune DXP - Open Edition provides one local user admin upon installation. This local user has access to all Cockpit tools and all artifacts in a Neptune DXP - Open Edition instance without any extra role assignment.
| Using the local user admin, create a role with the Global Admin checkbox selected.Assign this role to a limited number of selected so-called power users. This way, if you restrict access for users inadvertently, for example, to display or edit a development package, a power user with this role can restore access, if required. |
| Only the admin user, or users with a role with a Global Admin selection, can enable or disable the Global Admin checkbox on a role. |