Permissions and settings

through the permissions and settings tab you can change specific rights that a user inherits from their role to do this, select a user and open permissions and settings tab when you save the changes, you will be able to choose whether to apply them to the entire role or create a new role based on the new settings general here you can grant users access rights to create vaults, view the history of actions related to settings and users, access license info, view and modify the sso settings and background tasks system settings here you can grant users the right to view and modify specific groups of system settings ldap settings here you can grant users the right to view and modify ldap parameters which include adding and deleting servers, registering new users, managing group lists, viewing and configuring synchronization settings user management here you can grant users access rights to view and modify user management parameters these include any necessary actions with users and roles, such as creating, deleting, and editing users, changing their authorization type and sending invites role based user management this section includes settings that are critical to user management, such as user deletion, ability to reset 2fa or viewing the sessions of any user you can give access to the enabled settings to any role you need, or enable them for all members of your organization roles this section lets users view or manage roles and their settings account here you can grant users the ability to manage their account, change the interface, use the api, mobile apps, and extension authorization and 2fa settings here you can select security policies applied to a user