User Roles are defined separately in a Company and Organization. User Roles are based on the industry-standard approach of least privileges so you will need to explicitly grant user access to your Company, Organization, and management features.
User Roles in Company
-
Company Owner
-
Company Manager
-
Company User
- Company Guest
User Roles in Organization:
-
Organization Manager
-
Organization User
User Roles Description
Role | Description |
Company owner | User that created the Company, or got the ownership afterwards. Capable of complete management, device and organization overview. Full access everywhere. |
Company manager | User assigned to the Company with "admin"-like privileges. Have full access to all Organizations as an Organization Manager + can manage Organization's Device Plan. Can invite new users to the Company or Organizations |
Company user |
Standard company user managing end-customers Organizations. Privileges apply if assigned to the company. No Company settings access. Company User has access to the signageOS support portal. |
Company guest |
Standard company user managing end-customers Organizations. Privileges apply if assigned to the company. No Company settings access. No Organization device packages management No access to the signageOS support portal. |
Organization manager |
User assigned to the Organization capable of full management (Read, Create, Update, Delete) of the Organization and its: Devices - View, Provision, Update, Deprovision - Manage settings
Applets - View, build Core Apps, Assign to devices
Locations - View, Create, Update, Delete
Alerts & Alert Rules - View, Create, Update, Delete
Device Policy - View, Create, Update, Delete
Users - View users in the Organization
Organization Packages management Can not change the Organization Device Plan. |
Organization user |
Standard user assigned to an Organization. Devices - View, Provision, Update, Deprovision - Manage settings
Applets - View, build Core Apps, Assign to devices
Locations - View, Create, Update, Delete
Alerts & Alert Rules - View, Create, Update, Delete
Device Policy - View, Create, Update, Delete
Users - View users in the Organization |
Access to REST API tokens based on the user role
Only certain roles can access and generate REST API tokens. Account tokens are restricted to Company owners and managers. Organization tokens are only available for users that have a Manager role under the respective Organization.