Detailed Permissions

The following tables describe the permissions available to apply to both roles and groups.

Authoring

Permission	Read/Write	Control
Deployments	Read	Read deployment-related statuses and data.
Deployments	Write	Write deployment-related data, including the ability to deploy and terminate deployments.
Models	Read	Read authoring data models (projects, event patterns, event types, etc.).
Models	Write	Write authoring data models (projects, event patterns, event types, etc.).
Schema Discovery	Read	Use Schema Discovery to search topics and view schemas.

Data Management

Permission	Read/Write	Control
Connectors	Read	User is able to view connector configurations and status.
Connectors	Write	User is able to create, run, and stop connectors.
Upload Files	Read	User is able to see file upload status and records in the Activity Monitor page of the Data Importer.
Upload Files	Write	User is able to upload files via Data Importer.

History

Permission	Read/Write	Control
Audit	Read	User can visit the Audit Viewer application, which allows viewing historical actions.

Manual Actions

Permission	Read/Write	Control
Manual Actions	Write	If an event has manual actions available, a user can access the manual event interface to perform a specific action on the event.

User Management

Permission	Read/Write	Control
Groups	Read	User can see a list of groups in the system.
Groups	Write	User can create, delete, or modify a group.
Role	Read	User can see a list of roles in the system.
Role	Write	User can create, delete, or modify a role.
Users	Read	User can see a list of all users in the system.
Users	Write	User can modify another user's details, including first name, last name, access, role and group.

Workstation

Permission	Read/Write	Control
Collections Attachments	Read	User can download attachments from a collection or its comments.
Collections Attachments	Write	User can upload attachments to a collection and its comments.
Collections Export	Read	User can export data and reports from a collection.
Custom Field Templates	Write	User is able to view and edit Custom Field Templates in Workstation Designer.
Data Delete	Write	User is able to perform administrative deletion of Workstation data.
Export Builder	Write	User can access/update the export builder tool to create, manage, or delete limited custom mappings from a collection into CSV format.
Ingest	Write	User can see and interact with the Admin screen and the “Ingestion settings” table on the Admin screen. Note: Write permission to "Ingest" is required for any user that wishes to set "Event Decorations" on Designer (which is handled via the "Templates Views" view permission).
Notification Settings	Write	User can see and interact with the "Notification Settings" table on the Admin screen, but they are required to also be granted access to "Ingest", otherwise they will not see the Admin screen at all.
Report Builder	Write	User can access/update the report builder tool.
Tags	Write	User can see the Designer tab and the "Tags" mode within it. User can create, edit, or delete tags.
Templates Event Details	Write	User can see the Designer tab and the "Event Detail Templates" mode within it. User can create, edit, or delete Event Detail Templates.
Templates View	Read	User can view view templates.
Templates View	Write	User can create, update, or delete view templates. User can see the "Event Decorations" mode in the Designer tab if they also have "Write" access to "Ingest".
Views	Read	User can click into views but cannot add or delete widgets.
Views	Write	User can create, edit, and delete views. Within a view, they can add, edit, or delete widgets.