Roles
User roles are the connection between users and Digital.ai App Management permissions. A user's role determines which functions the user has access to in the Admin Portal. For example, you can use roles to block some users from seeing and performing actions on the User page, while allowing other users to have full access to create and edit applications on the Applications page.
You can assign users roles when you add or edit a user.
Role Types
Administrator
The Administrator role can perform all functions in the Admin Portal, and can connect to Digital.ai App Management through the API.
User
The User role is the most limited of all the roles. Users can use the Admin Portal only for modifying their account profile, which includes setting a new password. Typically, the User role is assigned to users who will log in to Digital.ai App Management through the App Catalog only—not the Portal. If a user is auto-provisioned through Single Sign-On (SSO), they are assigned the User role by default. For more information on SSO, see Single Sign-On.
Every role builds on the basic permissions of the User role. Therefore, all roles can perform the same functions as a User plus additional functions not accessible by Users.
User Manager
The purpose of the User Manager role is to create and manage the users and groups of an organization. User Managers have permissions to add new users, assign roles and groups, reset their passwords, and delete them from Digital.ai App Management. They can also generate and view all reports.
The User Manager can assign the roles of User, User Manager, and Developer to other users. Only Administrators can create or edit other Administrators.
Limited User Manager
The purpose of the Limited User Manager role is to create and manage users only in groups that the user is a member of. Limited User Managers have permissions to add new users, assign roles and groups, reset their passwords, and delete them from Digital.ai App Management.
When a Limited User Manager creates a new user, you must assign that new user to at least one group. Otherwise the new user will not be created.
The Limited User Manager can only assign the role of User to other users.
App Manager
The purpose of the App Manager role is to add, secure, and manage all of the applications of an organization (including App Catalogs). App Managers have permissions to add new apps, edit apps, delete apps, apply policies to apps, and sign apps. They can also set the policy defaults of an organization, inspect applications, create and manage categories, view groups, and view and export crash logs.
Developer
The purpose of the Developer role is to add, secure, and manage applications only in groups that the user is a member of. Developers have permissions to add new apps, edit apps, delete apps, apply policies to apps, inspect apps, sign apps, and view analytics and crash report logs. When adding an app, a Developer can't assign the app to a group he is not a member of. Also, Developers can't add or modify App Catalogs.
Role Matrix
Use the following table to visualize the specific permissions for each role type.
| Pages | User | Limited User Manager | User Manager | Administrator | App Manager | Developer |
|---|---|---|---|---|---|---|
| Applications | Not Available. | Not Available. | Not Available. | - View all applications in the organization. - View all details of an app, including the Direct Download link, if available. - Add, edit, and delete apps. - Apply policies to apps. - Sign apps. - View app analytics. - Inspect apps. - Administrator only: Send notifications to all users who have downloaded a particular app. - Administrator only: Select which apps are Featured Apps. | - View applications based on assigned groups. - View all details of an app, including the Direct Download link, if available. - Add, edit, and delete apps. - Apply policies to apps. - Sign apps. - View app analytics. - Inspect apps. | |
| Users | Not Available. | - User Manager and Administrator only: View the list of all users in an organization. - Limited User Manager only: View users based on assigned groups. - Add new users, edit existing users, and delete users. - View the list of available user roles and groups of an organization when adding or editing a user. - Enable or disable a user's device. - Clear data from a user's device using the Data Wipe policy. - Administrator only: Assign the Administrator role to new users and edit existing Administrator users | Not Available. | Not Available. | ||
| Groups | Not Available. | Not Available. | - View the list of all user groups in an organization. - Add new user groups, edit existing user groups, and delete user groups. - Send notifications to specific user groups. | View the list of all user groups in an organization. | Not Available. | |
| Categories | Not Available. | Not Available. | Not Available. | - View the list of all the categories of an organization. - Create new app categories, edit existing app categories, and delete app categories. | Not Available. | |
| Policies | Not Available. | Not Available. | Not Available. | Set policy defaults for an organization. | ||
| Reports | Not Available. | Not Available. | View all reports. | Not Available. | Not Available. | |
| Settings | Not Available. | Not Available. | Not Available. | - View and switch to affiliated organizations. - Add and edit affiliated organizations. - Edit other settings on the Settings tab. | Not Available. | Not Available. |