User roles

IEE uses role-based security to grant and restrict user access to specific IEE features. A security role is a defined set of permissions. All users that are assigned to a security role receive all of the permissions defined within that role.

Users can be members of multiple security roles. This allows you to grant access to IEE in layers, based on user job functions and experience levels.

For example, you might create a security role called Editing that includes permissions for all Editing and Estimation features and a security role called Reports that includes permissions for all MDM reports. If you have 30 users who need access to reports but only 2 users who need to edit data, you can assign all users to the Reports role but only those 2 users to the Editing role. Users that are not assigned to Editing cannot edit data.

IEE administrators can create, edit, and delete roles and users from the System Administration workbench.

Important! User roles will be disabled when Identity Sync is installed. The Identity Sync service in the Cloud Identity portal manages user roles and permissions. For more information, refer to the Identity Sync Service User Guide.

Prerequisite

• You must create a role before you can assign it to a user.

Roles restrict user access to IEE features and workbenches. To restrict access to meter data, use security groups. For more information, see Managing security groups.