This article will explain the purpose of User Roles and the ZeroLock® Management Console (ZMC) sections covered by a User Role.
The User Role feature provides administrators with an efficient method to manage users by placing them in groups (roles) instead of assigning permissions to specific sections of the ZMC environment.
On the ZMC, select Manage Users followed by User Roles. Select a box next to the role that you want to configure. The User Role settings screen will appear on the right, with the options to Duplicate, Edit, or Delete the role. The checkboxes in the sections will be greyed out.
Selecting Edit opens the Edit User Role screen. The number following is the role being edited.
The screen consists of fields for the User Role name and description, followed by three (3) sections used to configure what someone with that User Role may modify and view. Clicking the Modify or View column heading will select all the boxes in the column. When editing is done, select UPDATE to apply the changes.
When creating multiple roles with slightly different permissions, without having to manually set the same permissions for each role, using DUPLICATE is a great time saver. Once the changes have been made, rename the role and select CREATE.
Selecting Duplicate instead of Edit creates a copy of the current user role with a placeholder name consisting of the current role name with 'copy' appended to it. The duplicate of 'Demo User Role' would be 'Demo User Role copy', for example.
Setting User Permissions
Possible user permissions are Modify and View.
- Modify enables the user to make changes in the assigned section of the ZMC and view the changes.
- View alone only permits the user to view the settings for a ZMC section. The options to Duplicate, Edit, and Delete are not available.
Below, the administrator has permitted the Demo User Role to modify Control Policies by selecting the corresponding checkbox. On selecting Modify, View is automatically selected.
After selecting UPDATE, a warning may appear if a user has already been assigned to this role, requiring you to CONFIRM before proceeding.
Items greyed out are those for which the User Role does not have permissions.

For policies other than the default, the options will include Delete, as shown below.

View - The image below shows what a user with only view permission for Control Policies sees. The option to Duplicate, Edit, and Delete is absent.

Neither - A user with neither Modify nor View permissions will have the Control Policies section greyed out and will be unable to access it.

ZeroLock Management Console Sections
The following are the sections of the ZMC that User Roles may configure permissions for.
- Manage Users - Provides access to the User accounts and role setting page.
- System Configuration - Provides access to the System Configuration setting page.
- Activities - Provides access to the Activity Logs section on the Dashboard.