|
|
Online Help |
| Help Table of Contents |
Understanding Permissions and Roles for Group Management
Site Administrators have the necessary permissions to create and manage both User and Admin Security groups on your site. You can also give the appropriate permissions to Junior Administrators so that they, too, can manage the groups on your site -- by using the Group Administration permission type to grant User Group management roles and by using the Administrator Security Group Management permission type to grant Admininistrator Group management roles. The available roles are discussed in more detail below.
Managing User Groups
Adding basic Contact Management permissions (the "View Non-sensitive Contact Data No Tasks No Reports" role) enables your Junior Administrators to view the User Group List page, view the Members of the groups, and use the groups in Group Selectors (for the areas where they also have permissions, such as when selecting the audience for an email campaign).
If you want Junior Administrators to be able to Manage User groups on your site, you can grant them a Group Administration permission type/role from the following choices:
- Manage Groups -- this role allows administrators to manage User groups, including the ability to:
- Create new user groups
- Edit existing user groups
- Edit the permissions of the user groups
- View the members of user groups
- View and Use Groups -- this role allows administrators to do the following (and is essentially already granted by granting a basic Contact Management role):
- View the User Group List page
- View the Members of user groups
Notes:
- The Group Administration roles require the basic Contact Management role mentioned above ("View Non-sensitive Contact Data No Tasks No Reports").
- The Group Administration roles are categorized, so that they can be assigned to Junior Administrators for one or more individual Security Categories, without giving them access to all User Groups on your site.
Managing Administrator Security Groups
Most administrator groups are created as Admin Security Groups -- so that you can grant the members of the group access to certain parts of your administrative site. For example, you may want a group of Junior Administrators who can manage your email communications or a group who can manage your TeamRaisers or donations. These Admin Security Groups are listed separately from the User Groups -- on the Administrator Group List page.
If you want Junior Administrators to be able to Manage Admin Security groups on your site, you can grant them an Administrator Security Group Management permission type/role, from the following choices:
- Manage Administrator Security Groups -- this role allows administrators access to the Administrator Group List page where they can:
- Add a new Admin Security Group (as well as a User Security group or a non-security group)
- Edit an existing Admin Security group
- Edit the permissions of Admin Security groups
- View the Members of Admin Security groups
Caution: This role is very powerful, as those with this role can even edit their own permissions, so you will want to grant it very selectively.
- View Admin Security Groups -- this role allows administrators access to the Administrator Group List page where they can:
- View the List of Admin Security groups
- View the Members of Admin Security groups
Notes:
- The Administrator Group Management roles also require the basic Contact Management role mentioned above ("View Non-sensitive Contact Data No Tasks No Reports").
- The Administrator Group Management roles are also categorized, so that they can be assigned to Junior Administrators for one or more individual Security Categories, without giving them access to all Admin Security Groups on your site.
You can read more about Creating Administrator Accounts and related topics in the Convio Security Help Topics.