App roles determine the privileges that users have and how they can use the Cloud Identity Engine
app. For more information on roles, refer to the Common Services documentation. To configure a
role:
Select
Common Services
Identity & Access
.
Select the tenant that contains the user whose role you want to assign (if it is not
already selected).
Select a user and click
Assign Roles
.
To
Add Access
, select
Cloud Identity Engine
from
the list of
Apps & Services
.
Select the appropriate
Role
for the user
based on the following table based on the user’s access needs.
Role
Description
Deployment Administrator
This role provides access to deployment functionality
and read-only access to other functions.
MSP Superuser
This role provides full read and write access
to all functions for all tenants in a multi-tenant hierarchy. Assign
this role only to users or service accounts that need unrestricted
access to the MSP portal.
Superuser
This role provides full read and write access
to all available functions system-wide. It includes all permissions
for all other roles including MSP Superuser. Assign this role only
to users or service accounts that need unrestricted access.