System-wide user types and group roles
User types define the level of system-wide access, or permissions, each user has. Group roles define user access to different resources in the Diligent One Platform, and who can manage user access to different resources.
System-wide user types
Diligent One includes two system-wide user types that can be granted in Launchpad:
- System Admin can manage users and configure system-wide settings
- User can view and update their own profile information and settings
Actions each user type can perform
Full access
* Full access if assigned as Group Owner
No access
| Action | System Admin | User |
|---|---|---|
| Individually add and delete users |
|
|
| Bulk add and delete users |
|
|
| Resend invitation email |
|
|
| Update user roles and subscriptions |
|
|
| Update organization settings |
|
|
| Manage SSO settings |
|
|
|
View Users |
|
|
| Manage Groups |
*
|
*
|
| View Activations |
|
|
|
View Activity Logs |
|
|
|
View user profiles |
|
|
|
View organization settings |
|
|
|
View My Activations |
|
|
|
View User Settings |
|
|
|
Update my profile |
|
|
|
Change my password |
|
|
| Manage access tokens |
|
|
Group roles
Diligent One includes two group roles that can be granted in Launchpad:
- Owner can manage groups
- Member can be added to groups by an owner
Access to groups
System Admins and Users can be specified as owners or members. They can also not belong to a group (non-member).
The combination of the person's system-wide user type and group user type defines their level of access to groups in Launchpad.
| System-wide user type | Group role | Access available |
|---|---|---|
| System Admin | Owner |
|
| Member or non-member |
|
|
| User | Owner |
|
| Member or non-member | Not applicable |
For more information, see Adding and managing groups.
