Create Roles
- Last UpdatedJul 11, 2024
- 4 minute read
You can create different roles with permissions to perform various actions. Once you have created your roles, you can then assign them to individual users, or groups. A user/group can be assigned multiple roles.
AVEVA Recipe Management provides following predefined roles:
-
Administrator
-
System Supervisor
-
Engineer
-
Operator
When your database is created, an Administrator role is created and given all permissions in the system except the Abandon Recipe permission. You can add the Abandon Recipe permission to the Administrator. At the same time, the current OS user is added and given the Administrator role.
You cannot delete the Administrator role, but you can remove privileges (except the security privileges). There must always be one user assigned the Administrator role. You are not permitted to delete the last user/group with the Administrator role.
Permissions
The following table provides the list of predefined roles and permissions available in AVEVA Recipe Management:
|
Entity |
Permissions |
Administrator |
Engineer |
System Supervisor |
Operator |
|
Equipment
|
Edit |
√ |
√ |
|
|
|
View |
√ |
√ |
√ |
|
|
|
Change State |
√ |
√ |
|
|
|
|
Override Checkout |
√ |
√ |
|
|
|
|
View IO Maps |
√ |
√ |
|
|
|
|
Formula Templates
|
Edit |
√ |
|
√ |
|
|
View |
√ |
|
√ |
|
|
|
Change State |
√ |
|
√ |
|
|
|
Override Checkout |
√ |
|
√ |
|
|
|
Formulas
|
Edit |
√ |
|
√ |
|
|
View |
√ |
|
√ |
|
|
|
Change Use |
√ |
|
√ |
|
|
|
Change Limits |
√ |
|
√ |
|
|
|
Change State |
√ |
|
√ |
|
|
|
Override Checkout |
√ |
|
√ |
|
|
|
Recipe Templates/
|
Edit |
√ |
|
√ |
|
|
View |
√ |
|
√ |
|
|
|
Change State |
√ |
|
√ |
|
|
|
Override Checkout |
√ |
|
√ |
|
|
|
Execution
|
View |
√ |
|
√ |
√ |
|
Assign Formula |
√ |
|
√ |
√ |
|
|
Download Formula |
√ |
|
√ |
√ |
|
|
Assign Recipe |
√ |
|
√ |
√ |
|
|
Start Recipe |
√ |
|
√ |
√ |
|
|
Hold Recipe |
√ |
|
√ |
√ |
|
|
Restart Recipe |
√ |
|
√ |
√ |
|
|
Abort Recipe |
√ |
|
√ |
√ |
|
|
Stop Recipe |
√ |
|
√ |
√ |
|
|
Pause Recipe |
√ |
|
√ |
√ |
|
|
Resume Recipe |
√ |
|
√ |
√ |
|
|
Hold Capability |
√ |
|
√ |
√ |
|
|
Restart Capability |
√ |
|
√ |
√ |
|
|
Abort Capability |
√ |
|
√ |
√ |
|
|
Stop Capability |
√ |
|
√ |
√ |
|
|
Pause Capability |
√ |
|
√ |
√ |
|
|
Resume Capability |
√ |
|
√ |
√ |
|
|
Acknowledge Capability |
√ |
|
√ |
√ |
|
|
Change Runtime Parameter Values |
√ |
|
√ |
√ |
|
|
Force Transition |
√ |
|
√ |
√ |
|
|
Abandon Recipe |
|||||
|
Save Changes |
√ |
√ |
|||
|
Reports |
View |
√ |
|
√ |
√ |
|
Unit Of Measures
|
Edit |
√ |
√ |
√ |
|
|
View |
√ |
√ |
√ |
|
|
|
Parameter Extensions
|
Edit |
√ |
√ |
√ |
|
|
View |
√ |
√ |
√ |
|
|
|
Security
|
Edit |
√ |
|
|
|
|
View |
√ |
|
|
|
|
|
Parameter Groups
|
Edit |
√ |
|
|
|
|
View |
√ |
|
|
|
|
|
Lists
|
Edit |
√ |
√ |
√ |
|
|
View |
√ |
√ |
√ |
|
|
|
Keywords |
Edit |
√ |
√ |
√ |
|
|
View |
√ |
√ |
√ |
NOTE: If you are using the Standard Edition of AVEVA Recipe Management, the Execution permissions include only Assign Formula and Start Formula. No permissions related to Capability and Recipe are available.
For more information on users, refer to Working with Users/Groups.
A role change is effective immediately on the server, but you may not see the change in the client until the next time you open or refresh the client. If a role is deleted, you need to assign a new role to any users who were only assigned to the deleted role.
In AVEVA Recipe Management, you can create custom roles by assigning any or all of the permissions.
Permissions can be added to a role in two ways:
-
Selecting them from the permissions list
-
Using the Import option to bring in the permissions defined in a .csv file. For more information, see Importing Permissions.
To create a role by selecting permissions
-
From the Main menu, select Security > Roles to display the Roles Summary page.
All existing Roles are shown as tiles. The tiles contain the title of the role and the number of users and/or groups that have been assigned to the role. -
Click the Add Role button. A new Role is created with a default name that you can change. You can enter a description of the Role in the field below.
-
From the Permissions list grid, select the actions that you want the users assigned this Role to be able to perform.
-
Click the Allowed/Done By icon to select all the actions on the list.
-
Click Update once you have selected all the actions. The Role is saved.
NOTE: If you make any changes to the Role Permissions checked list, make sure you click Update before clicking the Back arrow icon. Otherwise, a warning message would appear prompting you to save the changes.
To edit a role
-
From the Main menu, select Security > Roles to display the Roles Summary page.
-
Click the Role you want to edit. The details screen displays.
-
Make the changes to the Role.
-
Click Update to save your changes.
To delete a role
-
From the Main menu, select Security > Roles to display the Roles Summary page.
-
Click the Role you want to delete. The details screen displays.
-
Click the Delete icon in the main action bar at the top of the screen. A confirmation message appears.
-
Click Yes.
To configure Check By Permission for Roles
You use the Check By option to enable the check by permission for a particular action available to a Role. Select the Check By check box if you want to allow a role to perform a Check By confirmation on one of the listed execution actions. The Check By option is available only for the following Execution actions:
-
Assign Formula
-
Download Formula
-
Assign Recipe
-
Start Recipe
-
Hold Recipe
-
Restart Recipe
-
Abort Recipe
-
Stop Recipe
-
Pause Recipe
-
Resume Recipe
-
Hold Capability
-
Restart Capability
-
Abort Capability
-
Stop Capability
-
Pause Capability
-
Resume Capability
-
Acknowledge Capability
-
Change Runtime Parameter Values
-
Force Transitions
-
Abandon Recipe
-
Save Changes
For more information, refer to the Working with Done By/Check By Settings topic.
To enable Check By permission for a role
-
From the Main menu, select Security > Roles to display the Roles Summary page.
All existing Roles are shown as tiles. The tiles contain the title of the role and the number of users and/or groups that have been assigned to the role. -
Click the Role for which you want to enable the Check By permission.
-
From the Check By column, select the actions for which you want to enable Check By or click the Check By header check box to select all the Execution actions available on the list.
-
Click Update once you have selected all the required actions. The Check By permission is available for the selected role.