Skip to main content
Back to Admin Console Roles and Permissions help in organizing the developer community based on the scope of their work.
  • By default the roles of Master Admin, App Owner, App Developer and App Tester are created by the system.
  • Each role has set of permissions allowed.
  • You can edit the permission settings for App Developer and App Tester but not for Master Admin and App Owner roles.
  • Users can be assigned to these roles, except App Owner which gets assigned when a User creates an App.
Apart from these the role of Primary Master Admin is created and assigned to the creator of the account. These roles can be classified into:

Admin Roles

An admin role is a set of pre-defined permissions for managing the user community. In this section, we talk about Admin roles, the permissions associated with them, how to create and assign these admin roles to users.

Built-in Admin Role

By default, a Master Admin role is created and this role can be assigned to any user for admin access. The various permissions granted to the Master Admin role are listed below:
PermissionMaster Admin
InviteYes
Import Users / SyncYes
Directory SyncEdit
Manage UsersEdit
Manage User SettingsEdit
Manage GroupsEdit
Manage Custom Admin RolesYes
Manage Built-In Admin RolesYes
Manage App RolesYes
Manage DeploymentYes
Enterprise AppsYes
Consumer AppsYes
Smart AppsYes
PreferencesYes
Single Sign OnYes
Kore.ai ConnectorYes
Enterprise KeyYes
API ScopesYes
View and Run Audit ReportsYes
View and Run App Chat HistoryYes

Custom Admin Role

The Master Admin can create custom Admin roles and assign the same to users. The following permissions can be granted to an Admin role.
PermissionAccess LevelsDescription
InviteYes, NoInvite Users via email; Invite users already imported
Import Users / SyncYes, NoBulk Import users via files
Directory SyncYes, NoEnroll users via Directory Sync
Manage UsersYes, NoManage user profile, user status, and role assignments
Manage GroupsYes, NoCreate a local group; manage user membership, view distribution lists (DLs)
Manage Custom Admin RolesYes, NoSet up and manage Custom Admin Roles. Assign/Revoke users
Manage Built-In Admin RolesYes, NoAssign users to / revoke users from built-in admin roles
Manage App RolesYes, NoSet up and manage app roles. assign/revoke users
Manage DeploymentYes, NoApprove & publish app (tasks) deployment requests
Enterprise AppsYes, NoAssign approved Enterprise app tasks to managed users
Consumer AppsYes, NoManage consumer apps, tasks, and channels
Smart AppsYes, NoManage smart apps, tasks, and channels
PreferencesYes, NoManage auto deployments and assignments
Single Sign OnYes, NoConfigure and manage Single Sign On
Kore.ai ConnectorYes, NoInitiate, enable & disable Kore.ai connector
Enterprise KeyYes, NoView key used for encrypting enterprise data
API ScopesYes, NoSetup API scopes to manage all users, roles, and in your account
View and Run Audit ReportsYes, NoAccess Audit Reports; Ability to run reports; filter criteria, etc
View and Run App Chat HistoryYes, NoView chat history from all of your account

Creating an Admin role

  1. On the upper-right corner of the Roles window, select +Add New.
  2. Enter Role Name and Role Description.
  3. Under Role Type, select Admin Role and select the necessary permissions for the role.
  4. You can retain the default permission settings or modify them as per your requirements.
  5. Select Save.
Once created, you can assign roles to individual users or to user groups. You can edit the roles from the Admin Console.

Assigning Admin role

  1. Open the Admin Console, select User Management > Users.
  2. Select a user’s record for which you want to add an app role. The user’s profile slides opens.
  3. Under the Profile tab, edit Admin Role.
    1. Select the appropriate Admin role from the dropdown with the available roles.
    2. You can assign multiple admin roles to the selected user.
    assign admin role

Assigning Admin Role to a User Group

  1. Open the Admin Console, select User Management > Roles.
  2. Locate the required role from the list, click the three-dot menu (⋮) at the right end of the row, and select Edit Role.
  3. Select Assignments > Assign Role.
  4. Open the Select Groups drop-down list and select all the groups for which you want to assign the app role, one after another.
  5. You can assign users also from this dialog from the Select Users type ahead input box.
  6. Select Save.
The default Master Admin role can be assigned to users (not groups) by the Primary Master Admin.

App Roles

This section illustrates various App Roles, their permissions, steps to create custom App role and assign users to the same. App Roles can be used to define permissions for accessing various components of a bot. These permissions include the ability to create tasks, train the bot, enable channels, enable extensions via SDKs, publish the app and view usage analytics. App Owner, App Developer, and App Tester are the three in-built app roles that are available for all accounts. Creators of are automatically assigned to the App Owner role. You may create additional custom app roles to meet your specific requirements. You can assign app roles to app developers either from App Builder or from the Admin Console. Following is the list of permissions that can be assigned to a App role:
PermissionAccess LevelsDescription
TasksFull, View, NoAbility to add, modify, upgrade and delete dialog, action, alert and info tasks.
Natural LanguageFull, View, NoAbility to add, modify, and delete utterances, synonyms, patterns and standard responses. Ability to manage Default Dialog, Ignore Words, Field Memory, and Advanced Settings. Note: The Natural Language settings that can be modified from inside Dialog Tasks and App Analytics pages also adhere to these permissions.
Knowledge GraphFull, View, NoAbility to add and modify Knowledge Collection
Batch TestingFull, View, NoAbility to add and manage test suites. In ‘view’ mode, users can only review the results and not be able to run test suites
App DevelopersFull, View, NoAbility to invite users to the app and assign them roles
App SettingsFull, View, NoAbility to manage General Settings, Language Management, Authorization Profiles, PII Settings, IVR Settings, App Variables, App Export, Advanced Settings, ChangeLogs, Delete App
App ImportYes, NoAbility to upgrade a app by importing a new app definition file
ExtensionsYes, NoAbility to associate apps for BotKit, WebSDK, Agent Transfer, and Events. Note: App creation and management are allowed for all app developers. However, the association of app against an extension is controlled via this permission.
API ScopesYes, NoAbility to manage API Scopes
Publish AppYes, NoAbility to publish app
ChannelsYes, NoAbility to enable and manage channel configurations
DashboardYes, NoView dashboard data
App AnalyticsYes, NoView app analytics.

Built-in App Roles

The following App roles are created by default. These roles are applicable for standard apps, sample, and smart apps.
PermissionApp OwnerApp DeveloperApp Tester
TasksEditEditView
Natural LanguageEditEditView
Knowledge GraphEditEditView
Batch TestingEditEditView
App DevelopersEditViewView
App SettingsEditEditNo Access
App ImportYesYesNo
ExtensionsYesYesNo
API ScopesYesYesNo
Publish AppYesYesNo
ChannelsYesYesNo
DashboardYesYesYes
App AnalyticsYesYesYes

Custom App Roles

Admin can create custom App roles and set the App permissions to these roles.

Creating custom App role

  1. On the upper-right corner of the Roles window, select +Add New.
  2. Enter Role Name and Role Description.
  3. Under Select Role Type, select App Role and select the necessary permissions for the role.
Creating custom App role
  1. You can retain the default permission settings or modify them as per your requirements.
  2. Select Save.
After creating a custom role, you can access more information about that role, change its name and description, add permissions to it, or assign this role to specific users.

Assigning App Role

You can assign roles to individual users or to user groups. You can add and edit the roles from the Admin Console. Also, you can assign an App role to a user while sharing the app with them from the Platform. Assign App Role to a User from the Admin Console
    1. Open the Admin Console, select User Management > Users.
  2. Select a user’s record for which you want to add an app role. The user’s profile slides opens.
  3. Select Manage Product Access and do the following:
    1. From the first drop-down list select an App.
    2. From the second drop-down list, select the role you want to assign the user for the selected app.
  4. Select Add +. The app name and app role appears below. Assign App Role to a User from the Admin Console