Authorization matrix

This is the authorization matrix of the standard CIAM roles:

Rights

SuperAdmin

Functional Manager

Admin

UserAdmin

Manage Settings

RU

-

-

-

Manage user roles and organisation types

CRUD

-

-

-

Manage own organisation

CRU

CRU

CRU

-

Manage other (main-level) organisations

CRUD

CRU

-

-

Manage own suborganisation(s)

CRUD

CRU

CRUD

-

Manage suborganisations of other organisations

CRUD

CRU

-

-

Manage users of own organisation(s)

CRUD

CRUD

CRUD

CRUD

Manage users of other organisation(s)

CRUD

CRUD

-

CRUD*

*Only for own suborganisations

Additionally, any admin level cannot add or remove anything that has a higher admin level then his own rights