You cannot modify pre-defined roles. All pre-defined roles begin with “I_” to make it easy to distinguish them from the roles you define.
General predefined roles:
|I_ADMIN||Users with this role are administrators and have unlimited access to all functions, including user administration. This role includes the rights of all other pre-defined roles.|
The I_ADMIN role is available only with on-premise installations.
|This role allows you by default to call business facades, i.e. external function calls in the application.
User "WSM": If you use the interface via web service calls, AEB creates a user "WSM" (WebServiceManager) with this role by default. This user is used by default for external communication with the application.
Note: If you change the password or name of a user with this role, you can corrupt the connection to an ERP system.
|Users with this role are client administrators. They can create users for the respective client and can assign and remove user roles.|
If client groups have been set up in the system, this role allows, for example, to make settings for the display, manage user tips, or view the change history for these client groups.
This role allows the configuration of data-related access rights.
A user with this role defines default settings (e.g. column definitions for overviews). These apply to all users of the current client, as long as individual users do not overwrite them with private settings.
|This role assigns the rights of a normal user. This role is included in every other pre-defined role. Every user to whom you have not assigned any specific rights has all the rights of this role. This can later be extended by the addition of other roles or rights or restricted by the removal of rights.|
A user with this role may view various data, but is no allowed to make any changes. Therefore, combine this role with the desired views from other roles which will allow the necessary access but prohibit changes. This role makes sense for an auditor, for example.
- All other predefined roles with explanations can be found in the office under User administration – Roles.
Predefined roles for Trade Compliance Management
This role lets you manage approvals in Export Controls and License Management.
|I_COMPLIANCEADMIN||The Compliance administrator is allowed to view and configure the Administration – Compliance – Profiles (e.g. the check settings) and Administration – Compliance – E-mail distribution lists (logs) entries. Therefore, only assign this role to a very limited group of people.|
This role allows the application-related use or configuration in connection with client groups, for example in:
|I_EC_DATA_ADMINISTRATION||With this role users can maintain master data in the Export Controls cabinet. By default, the following rights are linked to this role:
|I_GOODGUYDEF||This role permits the creation and maintenance of Good Guy addresses and lists. Users without this role can only view Good Guy addresses.
To be able to store a new Good Guy list in the compliance profile, you need one of the roles I_COMPLIANCEADMIN or I_ADMIN.
|I_LM_DATA_ADMINISTRATION||This role is needed to create and edit rights in the License Management module, to create approvals and to hand in ELAN-K2 applications.|
|I_RISK_ASSESSMENT_ADMIN||This role is needed to create and edit questionnaire templates in Risk Assessment and to maintain client-specific settings and master data for Risk Assessment.|
|I_SANCTIONSLIST||This role permits the manual creation and maintenance of restricted party addresses and restricted party lists. Users without this role can only view restricted parties.
To store a new restricted party list in the compliance profile, you need one of the roles I_COMPLIANCEADMIN or I_ADMIN.
|I_WHITELISTDEF||Lets you create and maintain whitelists and whitelist entries. Users without this role can only view whitelist entries.
To be able to store a new whitelist in the compliance profile, you need one of the roles I_COMPLIANCEADMIN or I_ADMIN.