Roles

Assign roles to a profile to determine the actions that a user can perform.

Using roles

Some roles, such as System Administrator, Company Administrator, User) can be used by themselves. Other roles are used as "building blocks" and are used in combination to grant permissions to accounts and resources.

Role descriptions

Type Value
Administrator This role can administer user accounts for its own tenant only. It cannot create a new tenant.
Business Rules - full access This role has all permissions (view, modify, import, export) for business rules for its own tenant. A user must be assigned the BusinessRule - full or the BusinessRule - view only role to run HIPAA Type 6 and Type 7 transactions.
Business Rules - view only This role can view business rules for its own tenant. A user must be assigned the BusinessRule - full or the BusinessRule - view only role to run HIPAA Type 6 and Type 7 transactions.
Code Lists - full access This role has all permissions for code lists (view, modify) for its tenant.
Code Lists - view only This role can view code lists for its tenant.
Company Administrator This role can administer passwords, add users, manage resources, and perform most other functions for its own tenant only. This role can also view the profile information of other users. The Company Administrator role cannot create a new tenant.
ControlNumbers - full access This role has all permissions (view, modify) for control numbers for its tenant.
ControlNumbers - view only This role can view control numbers for its tenant.
Default This role has a minimum set of permissions and can log in only.
Envelopes - full access This role has all permissions (view, modify) for envelopes for its tenant.
Envelopes - view only This role can view envelopes for its tenant.
Export This role can export resources for its tenant.
Import This role can import resources for its tenant.
Maps - full access This role has all permissions (view, modify) for maps for its tenant.
Maps - view only This role can view maps for its tenant.
REST This role can submit REST API jobs for its tenant. A user with the role cannot view or access the REST jobs of another user.
Schemas - full access This role has all permissions (view, modify) for schemas for its tenant.
Schemas - view only This role can view schemas for its tenant.
System Administrator This role can manage users and resources across all tenants. This role is available for the default when SPE is installed.
User This role can manage resources for its tenant.