How to Create Roles within Risk Cloud
Introduction to Roles
Roles allow Risk Cloud Administrators to provide users access to Risk Cloud so that they are able to perform work in the platform. A Role consists of a collection of users corresponding to the organization’s hierarchy (eg. “Manager” or “Executive”) that are associated with (a) Module Entitlements, which allow users access to Risk Cloud capabilities such as the ability to modify Table Reports or Application configurations and (b) Permission Sets, which determine the Steps in which users can view and/or edit Records.
This article will take you through the steps involved in creating a Role, adding users to the Role, and granting access through Module Entitlements and Permission Sets.
Follow the steps below to create a new Role.
1. Navigate to Build > Access.
2. Click + New Role.
Add Users to Roles
1. Navigate to the Users tab.
2. Use the search bar to search for and select users to add to the Role.
As mentioned earlier, access is provided through Module Entitlements and Permission Sets.
Module Entitlements provide access to capabilities in Risk Cloud, such as the ability to Import data, view Table and Visual Reports, and alter the configuration of Applications.
To add a Module Entitlement to a Role, check the relevant entitlement and then click the book icon or the pencil icon for read-only and edit access respectively.
If you want users to only view and edit the Records they are assigned, do not add any Entitlements to the Role. Refer to the Module Entitlements for Roles article for more information.
Permission Sets determine the Step in which users can view and edit Records. This article assumes that you have already created the required Permission Sets.
To add Permission Sets to the Role, navigate to the Steps tab, and select the appropriate Permission Set from the drop-down.
Best Practices for Managing Power Users
To help effectively manage your Power Users (both for licensing and security purposes), we recommend creating the following two Roles:
- Power User Role - Admin: This Role will only contain the "Admin - All" Module Entitlement.
- Power User Role - Build: This Role will contain all Module Entitlements except the "Admin - All" Entitlement.
No Permission Sets should be added to either of these Roles since Application permissions should since these two Roles should be used across functions and Applications to manage Power Users. Additionally, the "Admin - All" and "Build" Module Entitlements should not be added to any other Roles.