AvePoint Docs
Graph API
My support tickets
Graph API
My support tickets
English

Home > System > Permissions > Overview

Export to PDF

Permissions

Permission groups include EnPower users who are responsible for your cloud services management. By organizing users into permission groups, you can efficiently customize the data access scope and available management operations for each group. This approach helps in implementing granular access controls, ensuring that users have only the permissions necessary to perform their tasks, thereby enhancing security and compliance in your cloud environments.

Additionally, you can create EnPower roles with predefined permissions and assign roles to permission groups, which simplifies the management of access rights by allowing role assignments to groups rather than individual users, reducing the risk of privilege sprawl and making it easier to adapt to any changes.

For detailed steps of role and permission group management, refer to the following sections.

*Note: By default, Application administrators and Service administrators added to AvePoint Online Services for EnPower have full access and management permissions. You cannot update their permissions by adding them to permission groups. For detailed information on user management in AvePoint Online Services, refer to .

Create Roles

On the Permissions page, EnPower roles are displayed and can be managed in the Roles tab.

EnPower roles allow you to predefine available pages and management permissions. By assigning them to permission groups, you can control user access with a simplified approach. When creating permission groups with different data accessing scopes and the same permissions, instead of creating the groups individually and applying the same detailed permission settings, you can create the groups with different data scopes only and assign the role to them. This method streamlines the process, ensuring consistency and efficiency in managing access controls.

To create a role, complete the following steps:

  1. Click Create.

  2. In the Basic information step, enter the role name and description. Click Next to proceed.

  3. In the Management step, select the available management actions on each object management report page.

    Click the arrow (Icon: Arrow.) to expand and see all available actions on the corresponding page. By selecting the checkbox of a page, all actions underneath will be available for this role.

  4. In the Dashboard step, select the dashboards and charts this role can access.

  5. In Workflows, select the available trigger events and workflow actions for the role.

  6. Click Save. The role will be created.

On this page