1. Introduction
Role Management in redOrange.ai allows administrators to define and control the set of permissions assigned to various users within the system. This guide explains how to create custom roles, assign permissions, update existing roles, and maintain a secure and organized access control system.
2. Understanding Roles and Permissions
Role: A collection of permissions that define what actions a user assigned to that role can perform within redOrange.ai.
Permissions: Specific capabilities such as managing users, accessing tasks, modifying controls, or managing assessments.
By defining roles carefully, your organization ensures that users have only the access necessary to perform their duties, reducing security risks.
3. Default Roles
redOrange.ai comes with predefined roles such as Admin, Auditor, Compliance Analyst, Owner, CXO, and more. These default roles come with a predefined set of permissions optimized for common responsibilities.
4. Creating Custom Roles
Step 1: Access Role Management
Log in as an Administrator or Equivalent Role with 'Can Manage Users' permission.
Navigate to Settings > Access Management > Manage Role.
Step 2: Add a New Role
Click on the Add Role button.
Enter a descriptive name for the new role.
Step 3: Assign Permissions
From the permissions list, select the permissions that should be included in this role.
Permissions may include:
Can Manage Users
Can Manage Controls
Can Manage Policies
Can Manage User Review Access
Can Access Tasks
Can Manage Assessments
Can Manage Frameworks
Can Manage Integrations
Step 4: Save the Role
Review the selected permissions carefully.
Click Add Role with Permissions to create the custom role.
5. Editing Existing Roles
Step 1: Locate the Role
Navigate to Settings > Access Management > Manage Roles.
Find the role you want to edit in the roles list.
Step 2: Modify Permissions or Role Details
Click Edit next to the role.
Click to add permissions and select the permissions from the Dropdown.
Step 3: Save Changes
Click Save Changes to apply updates.
Note: Changing permissions on existing roles will affect all users assigned to that role.
6. Assigning Roles to Users
Roles are assigned when creating or editing users in Manage Users.
You can select from predefined or custom roles.
Ensure the selected role aligns with the user’s responsibilities.
7. Best Practices for Role Management
Keep the number of roles manageable — avoid unnecessary proliferation of roles.
Use descriptive names and document the purpose of each custom role.
Regularly review roles and associated permissions to ensure compliance with security policies.
Assign roles following the principle of least privilege (users get only the permissions they need).
Monitor changes in roles and maintain an audit trail (if your application supports it).
8. Troubleshooting
Issue | Solution |
Unable to assign a role to a user | Check if the role is active and has proper permissions assigned |
Custom role changes not reflected | Confirm users have logged out and back in or refresh their sessions |
9. FAQs
Q: Can I create a role with no permissions?
A: No, you cannot create a role with no permissions.
Q: Can one user have multiple roles?
A: Currently, redOrange.ai supports assigning one role per user. For multiple access needs, create roles that combine necessary permissions.
Q: How do I know what permissions a role has?
A: Permissions assigned to any role can be viewed and edited under Manage Roles.
10. Contact Support
For further assistance with role management, please contact our support team at:
Email: support@redorange.ai