- Only tenant admins have access to access management of AEB accounts.
As a tenant admin, you can use the access management to assign system access rights for your AEB products and test systems to yourself and others. Here you can find an overview of roles with the associated rights.
- The tenant admin role is a top-level role. (How do I create an additional tenant admin?) All other roles are system-specific and created by assigning system access rights. (How do I assign system access rights?)
Basic roles
The basic roles can be used in any AEB product. The tenant admin assigns them within the AEB account when creating a system access.
Name | Rights |
---|---|
I_CLIENTADMIN | With the I_CLIENTADMIN role, you can create AEB accounts for other users within the selected system and assign and revoke roles. |
I_CLIENTGROUPADMIN | If client groups have been set up in the system, this role grants rights that include configuring the display settings, managing user tips, or viewing the change history for these client groups. |
I_DDACCESSRIGHT | This role allows the configuration of data-related access rights. |
I_DEFAULTPREF | A user with this role defines default settings (column definitions for overviews, etc.). These apply to all AEB accounts in the system unless overwritten with personalized settings. |
I_EVERYONE | This role assigns the rights for normal system usage. This role is included in every other predefined role. Everyone to whom you have not assigned any specific rights has all the rights of this role. This can later be expanded by the addition of other roles or rights or restricted by the removal of rights. |
I_READONLY | Someone with this role may view various datasets but is not allowed to make any changes. For this reason, this role should be combined with the appropriate views from other roles so that the user has access but is blocked from making changes. This role makes sense for an auditor, for example. |
I_BUSINESSFACADE | This role allows you by default to call business facades, which are external function calls to the application.
“WSM” user: If you access the interface through web service calls, AEB creates a "WSM" (WebServiceManager) user with this role by default. This user is used by default for external communication with the application. Note: Using this role to edit a user name or password can corrupt the connection to an ERP system. |
Product-specific roles
Alongside the basic roles, some products also have product-specific roles available. The tenant admin defines the required system access within a person’s AEB account and can then, in addition to the basic roles, also select the available product-specific roles.
Product-specific roles for Trade Compliance Management can be found here.
Comments
Please sign in to leave a comment.