Skip to main content
Version: 8.9 (unreleased)

Manage roles

Use Management Identity roles to simplify and standardize access control for Camunda 8 management and modeling components (Web Modeler, Console, and Optimize).

About roles

Roles help you to enforce consistent permission sets, reduce errors, and scale access management as your organization grows.

  • Roles define the actions a user or application can perform in Camunda 8 management and modeling components by grouping together a set of related permissions.
  • You can assign roles directly to a user or using groups.

Default roles

Management Identity includes a set of default roles that are available out-of-the-box. These roles are designed to cover common use cases and can be assigned to users and groups to grant them access to different management and modeling components.

The following table lists the default roles and their descriptions:

NameDescription
Default user roleThe role does not grant any permissions by default. It is applied to all users, including service accounts.
Management IdentityProvides full access to Management Identity.
ConsoleProvides full access to Console.
OptimizeGrants full access to Optimize.
Web ModelerGrants access to Web Modeler for creating and collaborating on projects.
Web Modeler AdminGrants full access to Web Modeler, including all projects and the ability to manage collaborators.

Add a role

To add a role, take the following steps:

  1. Navigate to the Roles tab.

  2. Click the Add role button located on the top right of the table and a modal will open to enter the name and description.

On confirmation, the modal will close, the table will update, and the new role will be shown.

Delete a role

Roles can be deleted in two ways: through the trash button in the table view, or in the overflow menu once the role is selected.

  1. Navigate to the Roles tab.

  2. Search for a role by clicking the magnifying glass next to Add role.

  3. Click the trash button next to the role or click the role, click the overflow menu, then Delete.

On confirmation, the modal will close, the table will update, and the role will be removed.

Assign a role to a user

To assign a role to a user, take the following steps:

  1. Navigate to the Users tab.

  2. Click on the user you want to assign a role to to view their details.

  3. Click on Assigned roles to view the roles currently assigned to the user.

  4. Click the Assign roles button located on the top right of the table and a modal will open.

  5. Select the role you want to assign to the user and click Add.

On confirmation, the modal will close, the table will update, and the newly assigned role will be shown for the user.

Delete an assigned role from a user

To delete an assigned role from a user, take the following steps:

  1. Navigate to the Users tab.

  2. Click on the user you want to remove a role from to view their details.

  3. Click on Assigned roles to view the roles currently assigned to the user.

  4. Click the trash icon next to the role.

On confirmation, the modal will close, the table will update, and the role will be removed from the user.