Permissions granted by roles
In the table below, checkmarks indicate the permissions granted by each role.
Permission | Role | |||
Monitor | Administrator | Security | Compliance | |
View the user account list | ✓ | ✓ | ✓ | • |
View the full definition of individual user accounts | • | ✓ | • | |
View the description, allow namespace management property, and data access permissions for individual user accounts | ✓ | ✓ | • | • |
Create, associate roles with, delete, and otherwise manage user accounts, except modifying the allow namespace management property and data access permissions | • | ✓ | ✓ | • |
Modify the allow namespace management property and manage data access permissions for user accounts | • | ✓ | • | |
View the group account list | ✓ | ✓ | ✓ | |
View the full definition of individual group accounts | • | • | ✓ | |
View the description, allow namespace management property, and data access permissions for individual group accounts | ✓ | ✓ | • | • |
Create, associate roles with, and delete group accounts | • | ✓ | ||
Modify the allow namespace management property and manage data access permissions for group accounts | • | ✓ | • | |
Specify message text for theTenant Management Console and Search Console login pages | • | ✓ | ||
View the tenant overview | ✓ | ✓ | ✓ | ✓ |
Modify the tenant contact information, permission mask, and description | • | ✓ | • | • |
Allow or disallow access to the Tenant Management Console by HCP system-level users | • | ✓ | • | • |
View and modify Tenant Management Console security settings | • | • | ✓ | • |
View and modify HCP management API security settings | • | • | ✓ | • |
View and modify Search Console security settings | • | • | ✓ | • |
View content classes and content properties | ✓ | ✓ | • | • |
Create, modify, and delete content classes and content properties | • | ✓ | • | • |
View namespace associations with content classes | ✓ | ✓ | • | • |
Modify namespace associations with content classes | • | ✓ | • | • |
View tenant log messages about all events except compliance and security events | ✓ | ✓ | ✓ | ✓ |
View tenant log messages about compliance events | • | • | ✓ | |
View tenant log messages about security events | • | • | ✓ | • |
View syslog and SNMP logging options | ✓ | ✓ | • | • |
Enable or disable syslog and SNMP logging | • | ✓ | • | • |
View email notification settings | ✓ | ✓ | • | • |
Modify email notification settings | • | ✓ | • | • |
Generate chargeback reports | ✓ | ✓ | • | • |
Create and delete namespaces | • | ✓ | • | • |
View the namespace list | ✓ | ✓ | • | ✓ |
View namespace overviews | ✓ | ✓ | • | ✓ |
Modify namespace names and quotas | • | ✓ | • | • |
View namespace permission masks and descriptions | ✓ | ✓ | • | ✓ |
Modify namespace permission masks and descriptions | • | ✓ | • | • |
View namespace owners | ✓ | ✓ | • | ✓ |
Change namespace owners | • | ✓ | • | • |
View the tags associated with namespaces | ✓ | ✓ | • | • |
Modify the tags associated with namespaces | • | ✓ | • | • |
View namespace default retention settings | ✓ | ✓ | • | ✓ |
Modify namespace default retention settings | • | • | • | ✓ |
View namespace default shred settings | ✓ | ✓ | • | ✓ |
Modify namespace default shred settings | • | • | • | ✓ |
View namespace default index settings | ✓ | ✓ | • | • |
Modify namespace default index settings | • | ✓ | • | • |
View minimum data access permissions | ✓ | ✓ | • | • |
Modify minimum data access permissions | • | ✓ | • | • |
View namespace ACL settings (HCP tenants only) | ✓ | ✓ | • | • |
Manage the use of ACLs in namespaces | • | ✓ | • | • |
View namespace retention-related settings | ✓ | ✓ | • | ✓ |
Modify namespace retention-related settings | • | • | • | ✓ |
View the custom metadata XML checking setting for namespaces | ✓ | ✓ | • | • |
Modify the custom metadata XML checking setting for namespaces | • | ✓ | • | • |
View namespace object versioning configurations | ✓ | ✓ | • | • |
Configure object versioning in namespaces | • | ✓ | • | • |
View namespace compatibility settings | ✓ | ✓ | • | • |
Modify namespace compatibility settings | • | ✓ | • | • |
View namespace disposition settings | ✓ | ✓ | • | ✓ |
Modify namespace disposition settings | • | • | • | ✓ |
View namespace replication-related settings | ✓ | ✓ | • | • |
Modify namespace replication-related settings | • | ✓ | • | • |
View the service plans associated with namespaces | ✓ | ✓ | • | • |
Associate service plans with namespaces | • | ✓ | • | • |
View namespace DPL settings | ✓ | ✓ | • | • |
Modify namespace DPL settings | • | ✓ | • | • |
View namespace retention modes | ✓ | ✓ | • | • |
Modify namespace retention modes | • | ✓ | • | • |
View default settings for namespace creation | ✓ | ✓ | • | • |
Modify default settings for namespace creation | • | ✓ | • | • |
View the maximum number of namespaces per user | ✓ | ✓ | • | • |
Modify the maximum number of namespaces per user | • | ✓ | • | • |
View namespace access protocol configurations | ✓ | ✓ | • | • |
Configure namespace access protocols for namespaces | • | ✓ | • | • |
View search and indexing options for namespaces | ✓ | ✓ | • | • |
Modify search and indexing options for namespaces | • | ✓ | • | • |
Reindex namespaces | • | ✓ | • | • |
Monitor replication | ✓ | ✓ | • | • |
Select namespaces for replication | • | ✓ | • | • |
View all namespace log messages except messages about compliance events | ✓ | ✓ | ✓ | ✓ |
View namespace log messages about compliance events | • | • | • | ✓ |
View the list of irreparable objects | ✓ | ✓ | • | • |
Acknowledge irreparable objects | ✓ | • | ||
Create, modify, and delete retention classes | • | • | • | ✓ |
View the list of retention classes | ✓ | ✓ | • | ✓ |
View individual retention classes | ✓ | ✓ | ✓ | |
erform privileged delete operations | • | ✓ | ||
Download HCP Data Migrator | ✓ | ✓ | ✓ | ✓ |
Change your own locally authenticated password in the Tenant Management Console | ✓ | ✓ | ✓ | ✓ |
View HCP documentation from the Tenant Management Console | ✓ | ✓ | ✓ | ✓ |