User permissions

User roles and permissions

Deleting is available only to users with the System Administrator role. If you don’t see this option, it means you don’t have permission to do it, and you should contact the person with admin rights.

→ Learn more

The table below illustrates the various granular roles and their permissions in the UI and the API.

The roles have been grouped by group role, e.g., 'Product management," as well as by individual role, e.g., admin, sales, support, and viewer, to match "jobs to be done" and their related permissions.

Role names and description

Display role name

Role permissions and abilities

Account Administrator

Has all account permissions to configure and manage accounts. Is the only role with delete permission.

Product Management

Ability to configure and manage the product catalog.

Application Development

Ability to create API keys and create customers and entitlements. Cannot specify webhooks or modify products / SKUs.

Back Office Integration

Ability to create API keys and specify webhooks. Cannot modify or set up products / SKUs.

Customer Success

Ability to create and modify customers, contacts, and entitlements; cannot modify product catalog.

Customer Success Management

Ability to assign customer owners and manage customers, contacts, and entitlements. Can create custom fields.

Support

Has read-only permissions to view product catalog and customers. Ability to manage contacts, delete activations ,and add notes. Cannot edit entitlement details.

Sales Management

Ability to assign customer owners, manage customers, contacts and entitlements. Can create custom fields.

Sales

Ability to create and modify customers and entitlements. Cannot change products / SKUs.

Viewer

Has read-only permissions to view product catalog, entitlements, and customers. Can add notes to entitlements and customers.

Permissions (per roles above)

Legend:

EUP = End User Portal;

LLS = Local License Server;

ABL = Account Based Licensing.

PreviousResending user invites NextAPI Credentials

Last updated 10 hours ago

Was this helpful?

User roles and permissions

→ Learn more

The table below illustrates the various granular roles and their permissions in the UI and the API.

Role names and description

Display role name

Role permissions and abilities

Account Administrator

Has all account permissions to configure and manage accounts. Is the only role with delete permission.

Product Management

Ability to configure and manage the product catalog.

Application Development

Ability to create API keys and create customers and entitlements. Cannot specify webhooks or modify products / SKUs.

Back Office Integration

Ability to create API keys and specify webhooks. Cannot modify or set up products / SKUs.

Customer Success

Ability to create and modify customers, contacts, and entitlements; cannot modify product catalog.

Customer Success Management

Ability to assign customer owners and manage customers, contacts, and entitlements. Can create custom fields.

Support

Has read-only permissions to view product catalog and customers. Ability to manage contacts, delete activations ,and add notes. Cannot edit entitlement details.

Sales Management

Ability to assign customer owners, manage customers, contacts and entitlements. Can create custom fields.

Sales

Ability to create and modify customers and entitlements. Cannot change products / SKUs.

Viewer

Has read-only permissions to view product catalog, entitlements, and customers. Can add notes to entitlements and customers.

Permissions (per roles above)

Legend:

EUP = End User Portal;

LLS = Local License Server;

ABL = Account Based Licensing.