Default Security Role Reference
Intro
You can access content and perform actions in Domo, depending on the access rights of your security role. For information about features for controlling access, see Controlling Access in Domo.
The various default security roles in Domo include "Admin," "Privileged," "Editor," "Participant," and "Social." Each security role has a set of associated access rights. Note that these are the default security roles available in Domo. (They are also known as "Domo roles.") You can also create custom security roles in Admin Settings > Roles. This is discussed in detail in Managing Roles. This topic lists the default roles and the privileges available for each one.
If you have an "Admin" security role or a customized role with the "Manage all roles" privilege, you can manage access rights and security roles of other users in Domo. For information about assigning security roles, see Assigning a Security Role to a User.
Access Rights Levels of Default Security Roles
The following table describes the access rights level of the default security roles:
Security role |
Description |
---|---|
Admin |
Users with this default security role have all access rights. |
Privileged |
Users with this default security role have most of the access rights. However, these users cannot do the following:
|
Editor |
Users with this default security role have most of the same access rights as "Privileged" users. However, they cannot do the following:
|
Participant |
Users with this default security role have "view-only" access (except regarding projects). They can do the following:
|
Social | This default security role is for trial users and allows access only to Buzz, user Profiles, and Projects and Tasks. |
Access rights
The following table describes access rights available in Domo and indicates which default security roles have those access rights enabled by default:
Access right |
Users with this access right can... |
Admin |
Privileged |
Editor |
Participant |
Social |
For more information, see... |
---|---|---|---|---|---|---|---|
Allow inviting new users |
Invite new users to join Domo |
x |
x |
|
|
x (only other social users) |
|
Allow assigning role on Invite |
Assign a security tole to users they invite |
x |
x |
|
|
|
|
Allow editing user |
Change users' secutiry roles and delete user accounts |
x |
|
|
|
|
|
Allow creating or editing groups |
Manage user groups |
x |
x |
|
|
|
|
Allow creating or editing cards |
Create KPI cards and edit the details of existing cards |
x |
x |
x |
|
|
|
Allow viewing cards |
View pages and cares, including Details views |
x |
x |
x |
x |
x (only in Buzz and only if granted access) |
|
Allow setting card owner |
Assign or change owner of cards |
x |
x (only if card owner) |
x (only if card owner) |
|
|
|
Allow setting card access |
Share cards and pages with other users |
x |
x |
x |
|
|
|
Allow changing a page owner* |
Select a new owner for a card page |
x |
x (only if page owner) |
x (only if page owner) |
|
|
|
Allow changing a page name inline* |
Change the name of a page by clicking and editing the name |
x |
x |
x |
|
|
|
Allow creating or editing pages |
Create and rename pages in the Manage Pages dialog |
x |
x |
x |
|
|
|
Allow creating and editing alerts* |
Create, edit, and manage alerts |
x |
x |
x |
x |
|
|
Allow locking cards in a page* |
Lock card layout and sizes within a page |
x |
|
|
|
|
|
Allow moving cards within a page*^ |
Reposition cards within a page |
x |
x |
x |
x |
|
|
Allow resizing cards*^ |
Change the size of cards within a page |
x |
x |
x |
x |
|
|
Allow removing cards from pages*^ |
Remove cards from pages |
x |
x |
x |
|
|
|
Allow moving or copying a card*^ |
Move or copy a card from one page to another |
x |
x |
x |
|
|
|
Allow duplicating a card*^ |
Create a new version of a card instance ("Save As") |
x |
x |
x |
|
|
|
Allow updating a DataSet* |
Connect a new DataSet or update an existing DataSet |
x |
x |
x |
|
|
Updating or Refreshing the DataSet for a KPI Card |
Allow deleting another user's DataSet* |
Delete any DataSet you are not the Owner or a Co-owner of |
x |
|
|
|
|
|
Allow adding and removing page-level filters* |
Add and remove filters that apply to all of the KPI cards on a page |
x |
x |
x |
|
|
|
Allow editing page-level filters* |
Edit the filter criteria in existing page-level filters |
x |
x |
x |
x |
|
|
Allow adding and removing subpages* |
Add and remove subpages in the Manage Pages dialog |
x |
x |
x |
|
|
|
Allow accessing Admin Settings* |
Access the Admin Settings page |
x |
x |
x |
|
|
|
Allow adding and removing links between Details views* |
Add and delete links connecting Details views for different cards |
x |
x |
x |
|
|
|
Allow assigning default overview content to new users* |
Specify content that new users see in the Overview page when they sign in to Domo |
x |
|
|
|
|
|
Allow adding, editing, and removing drill paths* |
Add a drill path to a chart |
x |
x |
x |
|
|
|
Allow drilling down into a chart* |
Drill down into a chart in a KPI card Details view |
x |
x |
x |
x |
|
|
Allow moving and hiding pages* |
Move and hide pages in the Manage Pages dialog (users with a "Participant" security role cannot move subpages) |
x |
x |
x |
x |
|
|
Allow permanently deleting cards* |
Delete cards from Domo |
x |
|
|
|
|
|
Allow engaging in Buzz conversations* |
Post and respond to messages in Buzz |
x |
x |
x |
x |
x |
|
Allow auditing of private Buzz content** | Delete objectionable content | x | Buzz | ||||
Allow viewing pages as slideshows* |
View all of the cards on a page as a temporary slideshow |
x |
x |
x |
x |
|
Sharing Content Using Slideshows |
Allow exporting pages to PowerPoint* |
Download all of the cards in a page to Microsoft PowerPoint |
x |
x |
x |
x |
|
|
Allow publishing a page as a slideshow* |
Publish a slideshow of all of the cards on a page |
x |
x |
x |
|
|
|
Allow accessing the Publications page* |
Use the features of the Publications page to create and manage slideshows |
x |
x |
x |
|
||
Allow accessing the Data Center* |
Using the Data Center to add and manage DataSets, DataFlows, and accounts, and access the Data Warehouse |
x |
x |
x |
|
|
|
Allow viewing another user's profile* |
View other users' Profile pages |
x |
x |
x |
x |
x |
|
Allow editing another user's profile* |
Edit Profile page information in other users' Domo accounts, including name, position, department, tenure, phone numbers, profile picture, personal photos, status, and reports |
x |
|
|
|
|
|
Allow creating and editing projects* |
Create projects, edit project information, create task lists, assign tasks, archive tasks and lists, and filter projects |
x |
x |
x |
x |
x |
|
Allow changing company settings* |
Change company name and logo; specify authorized domains for new users; enable Social Sign In |
x |
|
|
|
|
|
Allow viewing and minimizing collections* |
See card collections in a page; minimize a collection so only the title shows |
x |
x |
x |
x |
|
|
Allow managing collections* |
Reorder cards within a collection; remove cards from a collection; move cards to a different collection; change the name or description of a collection |
x |
x |
x |
|
|
|
Allow accessing Domo University* |
Access Domo University using the link in the menu next to the user profile picture |
x |
x |
x |
x |
x |
|
Allow using the Report Scheduler* | Use the Report Scheduler to create and edit reports | x | x | x | x (pages only) | Scheduling Reports | |
Allow setting Report Scheduler options in the Admin Settings* | View all scheduled reports, view report history, and set global options | x | Scheduling Reports | ||||
Allow changing the owner of a DataFlow* | Change a DataFlow to another owner | x | Changing the Owner of a DataFlow | ||||
Allow deploying Appstore apps* | Download and deploy apps from the Appstore | x | x | x | Deploying Apps from the Appstore | ||
Allow viewing all DataSets in the Data Center* | View all DataSets in the Data Center | x | Sharing and Removing Access to Content (discusses sharing DataSets via sharing cards) |
*This access right does not appear in the Access Rights tab.
** Contact Domo Support for further instructions.
^If the page is locked, only users with an "Admin" security role can perform this action (unless they are the page owner).