The goal of this page is to provide general recommendations to admins on privileges that most end-users will need for working effectively with Syndeia Cloud. The sections on this page present the Global Privileges, Digital Thread Project Privileges, or their combinations that are needed for end-user capabilities.
Contents
Table of Contents | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Prerequisites
Syndeia provides extensive capabilities for user management, including Global Privileges and Digital Thread Project Privileges (
Status | ||||
---|---|---|---|---|
|
Digital Thread Project Capabilities
End-user capabilities for Digital Thread Projects require a combination of Global Privileges and Digital Thread Project Privileges which are presented here.
(1) Digital Thread Project Authors - These users will be able to create/update Digital Thread Projects and their contents, including creating/updating/deleting relations, baselines, queries and collections, and others.
Global Permissions needed:
REPOSITORY_CREATE, REPOSITORY_MODIFY, CONTAINER_CREATE, CONTAINER_MODIFY, TYPE_CREATE, TYPE_MODIFY, ARTIFACT_RELATION_WRITE, RESTFUL_WRITE, READ
Digital Thread Project Permissions needed:
If the Digital Thread Project is created by an author, they are automatically granted ALL permissions on that project, including
PRIVILEGE_MANAGE
which allows them to add other users (authors or reviewers) to that project.If the Digital Thread Project was not created by an author, they must have the following permissions on that project:
READ, RELATION_WRITE, QUERY_WRITE, BASELINE_WRITE
(2) Digital Thread Project Reviewers - These users will be able to review the content of Digital Thread Projects, including viewing all relations, navigating the digital thread explorer, viewing reports, viewing and comparing baselines, and running queries and collections.
Global Privileges needed:
READ
Digital Thread Project Privileges needed:
READ
on each Digital Thread Project that these users will be reviewing.
Administrative Capabilities
(1) Global Graph Query Authors - These are advanced users who are authors on multiple Digital Thread Projects but in addition have a business need to run queries across ALL Digital Thread Projects in a Syndeia deployment.
Additional Global Privilege permission:
GRAPH_QUERY
Important - Granting this permission will enable a user to run graph queries across ALL Digital Thread Projects, including those where they are not authors or reviewers. This is only meant for advanced users. Refer to details on this permission in the Global Privileges page.
(2) User Management with Global Privileges
(3) User Management with Digital Thread Project Privileges
Admins
Reviewer
Author
Admin
User Management
Super User
Admin