Users and user groups may be assigned different roles for each resource.

Roles determine the level of access and can be assigned in the following three ways:

Users and groups can have multiple roles on the same resource. For example, the user Hans Mueller might have both the Editor and Manager roles on a particular page. One of these roles might be inherited via the resource hierarchy and the other might be explicitly assigned by a portal administrator.

The table below summarizes roles and how they affect user interaction with resources:

Role Permissions
Administrator Unrestricted access on resources including creating, configuring, and deleting resources. Administrators can also change the access control configuration.
Security Administrator Creating and deleting role assignments for roles tied to specific resources.
Delegator No actual access to resource, but can create and delete role assignments. Delegators can assign specific users or user groups to roles.
Manager Creating new resources as well as configuring and deleting existing resources that are used by multiple users.
Editor Creating new resources and configuring existing resources that are used by multiple users.
Privileged user Viewing portal content, personalizing portlets and pages, and creating new private pages.
User Viewing portal content. For example, viewing a specific page or user profile.
No role assigned Cannot interact with resource.