Role Creation Guide

Quick Steps

~~Navigate to the~~ ~~Roles~~ ~~page and click the~~Click +CREATE ROLE ~~button(top left corner). This will take you to the "Create New Role" page.~~button

~~The~~ ~~"Create New Role"~~ ~~form is used to~~ ~~define a new role~~ by ~~assigning specific permissions~~ ~~across different~~ ~~sections~~.

~~Input Fields~~

~~Role Name~~*:
Enter ~~the name for the new role.~~

~~Input Rules:~~
- ~~The~~ Role Name ~~must be~~ 3 (~~minimum)~~ to 3-50 ~~(maximum)~~characters, ~~characters~~letters/numbers/spaces/-/_)
  ~~long.~~
- ~~It can include~~ ~~letters (A–Z, a–z)~~, ~~numbers (0–9)~~, ~~spaces~~, ~~hyphens (-)~~~~, and~~ ~~underscores (_)~~.
- ~~The~~ ~~Role Name~~ ~~cannot start or end with a~~ ~~hyphen (-)~~ or ~~underscore (_)~~.
- ~~It cannot contain~~ ~~consecutive hyphens or underscores~~ ~~(e.g.,~~ Admin__Role or Role--Manager).
~~Organization Name~~*:
Select ~~the~~ Organization
~~from~~

~~the~~

~~dropdown~~
Check ~~menu.~~permissions for each section

Click CREATE

Role Name Rules

✅ Valid: Company Admin, Device_Manager, Field-Technician
❌ Invalid: _Admin (starts with _), Role- (ends with -), Admin__Role (consecutive __)

Permission
Configuration

Permissions areby organizedSection

~~into~~

1. five main sections.
Check the boxes to grant the corresponding abilities to the users who will be assigned this role.

Permissions Breakdown

Section Permission Description
Devices Register Allows the user to register new devices.
View Allows the user to view the list and detail page of a device.
Update Allows the user to change a device’s location or edit its description.
Unregister Allows the user to remove a device from its assigned organization.
Users Create Allows the user to invite new users.
View Allows the user to view the list of existing users.
Update Allows the user to edit a user's name or change their assigned role.
Delete Allows the user to delete a user account.
Roles Create Allows the user to define and create new roles.
View Allows the user to view the list and profiles of roles.
Update Allows the user to modify the name or permissions of an existing role.
Delete Allows the user to delete a role.
Organizations Create Allows the user to create new child organizations.
View Allows the user to view the list of organizations.
Update Allows the user to modify the name of an organization.
Delete Allows the user to delete an organization.
VPN Create Allows the user to create new VPN tunnels and add devices/users to them.
View Allows the user to view the list and overview page of VPN tunnels.
Update Allows the user to edit the name of a VPN tunnel.
Delete Allows the user to delete a VPN tunnel, which also removes users and devices from it.
Start/Stop Allows the user to start and stop an existing VPN tunnel.
Enable/Disable Allows the user to enable and disable an existing VPN tunnel.

⚠️ Important Notes on Permissions

~~Section~~	~~Permission~~	~~Description~~
Devices	~~Register~~	~~Allows the user to register new devices.~~
	~~View~~	~~Allows the user to view the list and detail page of a device.~~
	~~Update~~	~~Allows the user to change a device’s location or edit its description.~~
	~~Unregister~~	~~Allows the user to remove a device from its assigned organization.~~
~~Users~~	~~Create~~	~~Allows the user to invite new users.~~
	~~View~~	~~Allows the user to view the list of existing users.~~
	~~Update~~	~~Allows the user to edit a user's name or change their assigned role.~~
	~~Delete~~	~~Allows the user to delete a user account.~~
~~Roles~~	~~Create~~	~~Allows the user to define and create new roles.~~
	~~View~~	~~Allows the user to view the list and profiles of roles.~~
	~~Update~~	~~Allows the user to modify the name or permissions of an existing role.~~
	~~Delete~~	~~Allows the user to delete a role.~~
~~Organizations~~	~~Create~~	~~Allows the user to create new child organizations.~~
	~~View~~	~~Allows the user to view the list of organizations.~~
	~~Update~~	~~Allows the user to modify the name of an organization.~~
	~~Delete~~	~~Allows the user to delete an organization.~~
~~VPN~~	~~Create~~	~~Allows the user to create new VPN tunnels and add devices/users to them.~~
	~~View~~	~~Allows the user to view the list and overview page of VPN tunnels.~~
	~~Update~~	~~Allows the user to edit the name of a VPN tunnel.~~
	~~Delete~~	~~Allows the user to delete a VPN tunnel, which also removes users and devices from it.~~
	~~Start/Stop~~	~~Allows the user to start and stop an existing VPN tunnel.~~
	~~Enable/Disable~~	~~Allows the user to enable and disable an existing VPN tunnel.~~

~~View~~Register ~~Dependency:~~- ~~The~~Add ~~View~~new ~~permission for any section is~~ ~~required~~ ~~if you intend to grant any other permission (~~~~Create~~, ~~Update~~, ~~Delete~~~~, etc.) in that same section.~~devices
~~VPN~~View ~~Dependency:~~- See device list and details

Edit To- ~~grant~~Modify ~~any~~device info

~~VPN~~Unregister ~~permissions,~~- ~~the~~Remove ~~Devices View~~ ~~permission must also be selected.~~devices

2. Users

Create - Invite new users

View - See user list

Edit - Change names/roles

Delete - Remove users

3. Roles

Create - Define new roles

View - See role list

Edit - Modify permissions and name

Delete - Remove roles

4. Organizations

Create - Add child organizations

View - See organization list

Edit - Change names

Delete - Remove organizations

5. VPN

Create - Make VPN tunnels

View - See VPN list

Edit - Change tunnel names

Delete - Remove tunnels, and remove devices and users from tunnel

Start/Stop - Control VPN process

Enable/Disable - Manage tunnel status

Permission Rules

⚠️ View Dependency

Must check View permission when checking any other permission in that section.

✅ Valid: Devices View + Register
❌ Invalid: Devices Register only (system auto check View)

⚠️ VPN Dependency

Must check Devices View when checking any VPN permission.

✅ Valid: VPN View + Devices View
❌ Invalid: VPN View only (system auto check Devices View)

Common Role Templates

System Administrator

✓ All permissions in all sections

Device Manager

✓ Devices: Register, View, Edit

✓ Users: View

✓ Organizations: View

Field Technician

✓ Devices: Register, View

Network Administrator

✓ Devices: View

✓ VPN: All permissions

Read-Only Viewer

✓ All sections: View only