Roles

Administrator’s of Domino can assign roles to users. These roles can be set manually via the UI or they can be mapped in from your identity provider if you have SSO integration enabled.

The available roles are:

  • Practitioner
  • SysAdmin
  • ProjectManager
  • Librarian
  • SupportStaff
  • ReadOnlySupportStaff

Users with no role are treated as a LightUser, have restricted feature access, and may have a different licensing status. A SysAdmin user can grant access roles to other users. To do so, open Users tab of the admin UI. Locate the user you want to grant permissions to, click Edit next to the username, then select the desired role.

Users can have more than one role, and will have the additive permissions of each role.

By default, all new users will be assigned the Practitioner role, but this can be changed with central configuration options.


Project Overview Actions

Permission LightUser Practitioner SysAdmin
Create Project   X  
View Project List X X X
Fork Project   X  
Archive Project   X X

File Actions

Permission LightUser Practitioner SysAdmin
List and View Files X X X
Edit Files   X  
Upload Files   X  

Workspace Actions

Permission LightUser Practitioner SysAdmin
Start Workspace   X  
Stop Workspace   X X
Open Workspace   X  
View Workspace History X X X
Archive Workspace   X X

Job Actions

Permission LightUser Practitioner SysAdmin
Start Job   X  
Stop Job   X X
View Job History X X X
Create Scheduled Job   X  
Edit Scheduled Job   X X
Delete Scheduled Job   X X

Project Settings Actions

Permission LightUser Practitioner SysAdmin
View Project Settings   X X
Edit Project Settings   X X

Model API Actions

Permission LightUser Practitioner SysAdmin
Create Model API X X  
Be a Model API “Owner” X X  
Be a Model API “Editor” X X X
Be a Model API “Viewer” X X  

App Actions

Permission LightUser Practitioner SysAdmin
Publish or Start App X X  
Stop App X X X
View App X X X

Launcher Actions

Permission LightUser Practitioner SysAdmin
View Launchers X X X
Create or Edit Launcher X X  
Delete Launcher X X  
Run Launcher X X  

Dataset Actions

Permission LightUser Practitioner SysAdmin
Create Dataset   X  
Create Dataset Snapshot   X  
Mount Dataset   X  
View Datasets X X X
Delete Dataset Snapshot     X

Environment Actions

Permission LightUser Practitioner SysAdmin
List and View Environment X X X
Create Environment X X X
Edit Environment X X X

Administrator Actions

Permission LightUser Practitioner SysAdmin
View Admin UI     X
Edit Settings in Admin UI     X



About the Project Manager Role

When Project Managers are  members of organizations, their role grants them owner-level access to all projects that are owned by other members of the organizations. This allows the Project Manager to see these projects and their assets in the Projects Portfolio and Assets Portfolio.

Note that the Project Manager may also have the ability to add users to these organizations, thereby gaining contributor access to those users’ projects. For this reason, Project Manager should be treated as a highly privileged role, similar to System Administrator.