System-wide user types and group roles (permissions)
User types define the level of system-wide access, or permissions, each user has. Group roles define user access to different resources in the Diligent One Platform, and who can manage user access to different resources.
System-wide user types
Diligent One includes two system-wide user types that can be granted in Launchpad:
- System Admin can manage users and configure system-wide settings
- User can view and update their own profile information and settings
Actions each user type can perform
Full access
* Full access if assigned as Group Owner
No access
Action | System Admin | User |
---|---|---|
Individually add and delete users | ||
Bulk add and delete users | ||
Resend invitation email | ||
Update user roles and subscriptions | ||
Update organization settings | ||
Manage SSO settings | ||
View Users |
|
|
Manage Groups | * | * |
View Activations | ||
View Activity Logs |
|
|
View user profiles |
|
|
View organization settings |
|
|
View My Activations |
|
|
View User Settings |
|
|
Update my profile |
|
|
Change my password |
|
|
Manage access tokens |
Group roles
Diligent One includes two group roles that can be granted in Launchpad:
- Owner can manage groups
- Member can be added to groups by an owner
Access to groups
System Admins and Users can be specified as owners or members. They can also not belong to a group (Non-member).
The combination of the person's system-wide user type and group user type defines their level of access to groups in Launchpad.
System-wide user type | Group role | Access available |
---|---|---|
System Admin | Owner |
|
Member or Non-member |
|
|
User | Owner |
|
Member or Non-member | Not applicable |
For more information, see Adding and managing groups.