Roles
In this article, you will learn about claims and access levels, which are the main concepts that define roles.
Roles are used to grant permissions to users to perform specific actions in CluedIn. These permissions are only granted to the modules within the platform, not to the data. For information on how to restrict access to data, see Data access.
All roles are listed in Administration > Roles. The following table provides a list of default CluedIn roles. In the Access status column, you can download a file with details of the default role’s access to the features in CluedIn. However, you can change the configuration of the role and extend its access to features according to your needs.
Role name | Description | Access status |
---|---|---|
DataArchitect | Responsible for designing an organization’s enterprise data strategy. | Download |
DataCompliance | Responsible for daily operations around data compliance. | Download |
DataComplianceAdministrator | Responsible for approving changes made by users with the DataCompliance role. | Download |
DataGovernance | Responsible for monitoring and maintaining data quality. | Download |
DataGovernanceAdministrator | Responsible for approving changes made by the users with the DataGovernance role. | Download |
DataSteward | Responsible for cleaning data using the Clean and Prepare modules. | Download |
DataStewardAdministrator | Responsible for approving changes made by the users with the DataSteward role. | Download |
DeduplicationAdministrator | Responsible for creating and maintaining deduplication projects and merging the results back into the system. | Download |
DeduplicationReviewer | Responsible for reviewing deduplication project results and approving groupings. | Download |
Guest | User with minimal, read-only permissions. | Download |
OrganizationAdmin | Administrator within the organization. | Download |
OrganizationUser | User within the organization who can view all modules as read-only. | Download |
ReportManager | User who can generate reports for compliance matters such as breach, subject request, and retention. | Download |
User | User who can view all modules as read-only. | Download |
A role is a container for claims and access levels. A claim is the name of a specific feature or operation that can be performed in CluedIn. Most of the time, the name of the claim is the same as the name of the module in CluedIn. Learn more about claims in a dedicated article. An access level indicates the type of activity that can be performed with the claim.
To get acquainted with the required claims and access levels for all actions in CluedIn, download this file.
To view the role’s claims and access levels, select the role. In the first column, you can find the name of the section in CluedIn (a) and claims within that section (b). In the second column, you can find access levels (c) to each claim.
Each role contains the same list of claims, but different access levels. We recommend that you familiarize yourself with the default CluedIn roles, so that you know which role to assign to users in your organization. If the default configuration is not suitable for you, you can change the access levels in the default roles or create your own roles.
In CluedIn, the following access levels are used:
- None – no access to the claim.
- Informed – read-only access to the claim. The user will be able to view all information within the claim, but will not be able to add, edit, or delete items within the claim.
- Consulted – read and write access to the claim. The user will be able to add, edit, or delete items within the claim.
The Responsible and Accountable access levels are reserved for upcoming versions. Currently, the activities represented by these access levels are the same as in the Consulted access level.
All authorized users have a list of claims and access levels applied to them. If a user has multiple roles with different claim access levels, then the higher access level will be applied to the user.