AvePoint Docs
Graph API
My support tickets
Graph API
My support tickets
English

Home > Confidence Platform for Google User Management

Export to PDF

Confidence Platform for Google User Management

All Users

In All users, users both added via AvePoint Online Services and those invited directly within the platform are displayed and can be managed. It enables administrators to invite new users by assigning either Administrator roles with full system access or Standard user roles with customizable, scope-based permissions.

This hub provides comprehensive control over user permissions, allowing precise management of data access and functional roles across the platform. Administrators can view user details, modify role assignments, and ensure appropriate access levels are maintained for all users.

To invite a new user, complete the following steps:

  1. On the All users page, click Invite users in the upper-right corner.

  2. In the Invite users window, complete the following configurations:

    • Email address – Enter the email address of the user. This email address should be existing email address in your connected tenant and it will be used to sign into this platform.

    • Select a role – Grant the platform role to this user. You can select from:

      • Standard user – This is the basic end user role in this platform. User with this role must be assigned with manageable scope and delegated roles in this platform. Or they won’t be able to access the platform. For more details on scope and delegated role, refer to Data Scope and Delegated Roles.

      • Administrator – This is the role will full access in this platform. To access Governance, Risk intelligence, Policy enforcement, and Information management modules, users must have this role assigned. Users with this role can also perform system administrations, including user permission assignments and other system-level settings.

  3. Click Next. If Administrator was selected as the user role, check the user and role details, then click Invite to complete.

  4. If Standard user was selected as the user role, in the Delegated roles step, click Add role to assign delegated roles to this user.

    For each role, select the available data scope. The user will only have the assigned role in that specific data scope.

    To create a new role or scope, click Create new role or Create new data scope in the corresponding dropdown menu.

  5. Click Next and check the details. Once confirmed, click Invite to complete the invitation and role assignment.

The invited users will be synced to AvePoint Online Services and can be managed by both AvePoint Online Services’ service administrators and administrators within this platform.

To assign roles to users added via AvePoint Online Services or edit roles of invited users, click Icon: Action list. to the right of each user record, then click Edit permission, you’ll be able to manage the roles and manageable data scope of the user.

To view the details of a user and related role assignment, click the user ID.

Delegated Roles

Delegated roles enables precise access control within the Administration module by defining custom roles with specific permissions. These roles grant tailored levels of access – Full, Read-only, or No access – to the Shared drives and Users modules. Each role operates within an assigned data scope, ensuring users can only view or manage objects in permitted areas.

To create a delegated role, complete the following steps:

  1. On the Delegated roles page, click Create role in the upper-right corner.

  2. On the Create role pane, complete the following configurations:

    • Basic information – Enter the role name and descriptions. Then click Next.

    • Permissions – Select the permission of this role in the Shared drives and Users module in Administration. The assignable permissions are:

      • Full access – Users with this permission can both view and manage the objects.

      • Read-only – Users with this permission can only view and filter object data.

      • No access – Users with this permission cannot access the corresponding page.

      Upon completion, click Next.

    • Overview – Generally check the configurations.

  3. Click Finish to create the role.

Data Scope

In Data scope, define access boundaries by selecting specific containers where users can view or manage objects. It ensures role-based permissions are applied only to designated areas, maintaining precise control over data visibility and management rights.

To create a data scope, complete the following steps:

  1. On the Data scope page, click Create in the upper-right corner.

  2. On the Create data scope pane, complete the following configurations:

    • Basic information – Enter the role name and descriptions. Then click Next.

    • Data scope – Add containers to the data scope. Users assigned with this data scope can only view or manage objects in the selected containers.

      Click Add containers in the upper-right corner. In the Add containers window, search for or filter containers to add. Select the containers and click Add.

      The added containers will be displayed in the containers table. You can select certain unwanted containers and then click Remove to remove them from the scope

      Upon completion, click Next.

    • Overview – Generally check the configurations.

  3. Click Finish to create the data scope.