Authorization matrix

This is the authorization matrix of the standard Signicat IAM roles:

Rights

SuperAdmin

Functional Manager

Admin

UserAdmin

Manage Settings

RU

-

-

-

Manage user roles and organisation types

CRUD

-

-

-

Manage own organisation

CRU

CRU

R

-

Manage other (main-level) organisations

CRUD

CRU

-

-

Manage own suborganisation(s)

CRUD

CRU

CRUD

-

Manage suborganisations of other organisations

CRUD

CRU

-

-

Manage users of own organisation(s)

CRUD

CRUD

CRUD

CRUD

Manage users of other organisation(s)

CRUD

CRUD

-

CRUD*

*Only for own suborganisations

Additionally, any admin level cannot add or remove anything that has a higher admin level then his own rights

The CRUD acronym in the above table has the following meaning:

  • C = Create

  • R = Read

  • U = Update

  • D = Delete