If you find that the built-in roles described in What User Roles Are Available? aren't sufficient for your organization's needs, you can create a custom role as follows:


  1. Click  on the left sidebar menu.
     
  2. Click Roles on the flyout menu that appears.
     
    The Roles screen will appear.
      
  3. Click Add New at the top right.
     
    The Add Role dialog box will appear.
      
  4. Type a name and description for the new role.
     
    CTC Admin will automatically be selected for the application.
     
  5. Select Inheritable so that the role can be seen by subaccounts of the account it is assigned to (so the subaccounts, or child accounts, inherit the role from the parent account).
     
    In the Features section, you will find a list of all the screens and available functionality for CTC Admin.
     
  6. Select the check box for the level of access privileges for each feature/screen the new role will need, given these options:
     
    • All: Adds Create, Read, Update, and Delete rights, plus Assign in the File Permissions rows. (Clicking All will select all the other check boxes.)
       
    • Create: Gives users with the role the ability to add new entities for the screen.
       
    • Read: Allows users with the role to only view the page.
       
    • Update: Grants the right to edit previously created entities.
       
    • Delete: Enables the ability to remove entities.
       
    • Assign: Applicable only for file permissions, lets users with the role assign that file type to jobs (when they are creating a new job), plus add files of the type via the Add New feature on the Device Files screen (see Adding Files to an Account). These are the file type groups:
       
      • Script (PEG and PEG2)
         
      • LMU firmware and coprocessor
         
      • VBUS (JPOD, VBU3, JPOD2, OBDII including all VBUS configs)
         
      • Bluetooth (BLE/BT — all 8)
         
      • Radio firmware (including BSP)
         
      • HostedApp, EdgeApp, and OPKGs
         
      • Customer database files (DriverID, geozone, APN list)
         
      • MDT
         
      • KeyFiles (assigning only)

USING PERMISSIONS INSTEAD OF FEATURES

You many have noticed the Permissions option at the bottom left of the Add Role dialog box. This enables you to more specifically fine-tune the permissions given to the new role. Unless you have a definite need for this level of control, it is recommended that you instead use the Features option, which turns on privileges on a screen-by-screen basis.

 


  1. Click Done.
     
    The new role will appear in the Roles grid.

WHAT IS THE DIFFERENCE BETWEEN THE DEVICE FILES ROW AND THE VARIOUS FILE PERMISSIONS ROWS?

Some users have been confused about the Device Files row under Provisioning versus the list of File Permissions types. The Device Files options give the role access to the Device Files screen (which you can navigate to via the Provisioning menu item's flyout menu): If the role has Create rights, its users can add a new file on the Device Files page; Read allows them to just view the page; Update enables the edit file action; and Delete lets them delete files.

File Permissions determines which file types are available to the role: If the role has the Create privilege, users with the role can add that type of file on the Device Files screen; with the Assign right, they can assign the file type to new jobs they are creating.