Creating a Role in Management Console

A role is a collection of permissions that you assign to a user. If the predefined roles that come with Spectrum™ Technology Platform do not fit your organization's needs, you can create your own roles.

To create a role in Management Console:
  1. Open Management Console.
  2. Go to System > Security.
  3. Click Roles.
  4. Click the Add button .
    Tip: If you want to create a role that's similar to an existing role, you can make a copy of the existing role by checking the box next to the role you want to copy then clicking the Copy button . Then, edit the new role and continue with the steps below.
  5. In the Role name field, enter the name you want to give to this role. The name can be anything you choose.
  6. Click corresponding to the Secured Entity group to which you want to grant permission.
    The group expands, showing all the secured entities.
  7. Select the permissions you want to grant for each entity type. The permissions are:
    Create
    Allows the user to create entities that fall into this entity type's category. For example, if you allow the Create permission for the JDBC Connection entity type, users with this role would be able to create new database connections in Management Console.
    View
    Allows the user to view entities contained by the entity type. For example, if you allow the View permission for the JDBC Connection entity type, users with this role would be able to view database connections in Management Console.
    Modify
    Allows the user to modify entities contained by the entity type. For example, if you allow the Modify permission for the JDBC Connection entity type, users with this role would be able to modify database connections in Management Console.
    Delete
    Allows the user to delete entities contained by the entity type. For example, if you allow the Delete permission for the JDBC Connection entity type, users with this role would be able to delete database connections in Management Console.
    Execute
    Allows the user to initiate processing of jobs, services, and process flows. For example, if you allow the Execute permission for the Job entity type, users with this role would be able to run batch jobs. If you allow the Execute permission for the Service entity type, users with this role would be able to access services running on Spectrum™ Technology Platform through the API or web services.
  8. Click Save.

The role is now available to be assigned to a user.

Warning: Granting Spatial Module permissions to roles that you create on the Spectrum Management Console's Roles tab (on the System menu, select Security, and click the Roles tab) breaks permissions set in . Instead, create and manage permissions on specific resources or folders in . Setting Spatial permissions on a role created in the Management Console gives that role full permission to read all named resources (including maps, layers, tables, and projects) and to edit all tables when granting data manipulation language (DML) permissions, which override permission set for the role in .