P3M
Docs

Role Assignment

Comprehensive guide to assigning and managing user roles in P3M, including role hierarchies, permissions, and best practices for role-based access control.

Role Assignment Overview

Role-Based Access Control

P3M's role assignment system provides granular control over user permissions and access levels, ensuring that users have appropriate access to features and data based on their organizational responsibilities.

Available User Roles

SuperAdmin

Highest Access

Full system access with complete administrative privileges.

  • • Complete system administration
  • • User and role management
  • • System configuration
  • • All audit and task operations
  • • Organization-wide reporting

Admin

Administrative

Administrative access for department and user management.

  • • Department management
  • • User administration
  • • Audit creation and management
  • • Task assignment
  • • Reporting and analytics

Auditor

Professional

Specialized role for conducting audits and assessments.

  • • Conduct audits
  • • Access audit tools
  • • Generate audit reports
  • • Review audit submissions
  • • Analytics access

Auditee

Standard User

Standard user role for participating in audits and tasks.

  • • Participate in audits
  • • Complete assigned tasks
  • • Access personal dashboard
  • • Submit audit responses
  • • View personal reports

Role Assignment Process

1

Access User Management

Navigate to the user management section

  • Log in with SuperAdmin or Admin privileges
  • Navigate to Organization → User Management
  • Search for the user to assign roles
  • Click on the user profile to edit
2

Select User Role

Choose the appropriate role for the user

  • Review available roles and permissions
  • Consider user's job responsibilities
  • Select primary role from dropdown
  • Add secondary roles if needed
3

Configure Permissions

Fine-tune specific permissions if needed

  • Review default role permissions
  • Customize specific feature access
  • Set department-level restrictions
  • Configure data access levels
4

Save and Notify

Save changes and notify the user

  • Review all role assignments
  • Save the configuration
  • Send notification to user
  • Document role assignment reason

Role Hierarchy & Permissions

Understanding the role hierarchy helps ensure proper access control and security.

Level 4

SuperAdmin

Complete administrative control

Full System AccessUser ManagementSystem ConfigurationAll Features
Level 3

Admin

Administrative functions within scope

Department ManagementUser AdministrationAudit ManagementReporting
Level 2

Auditor

Specialized audit functions

Conduct AuditsAudit ToolsGenerate ReportsAnalytics Access
Level 1

Auditee

Standard user participation

Participate in AuditsComplete TasksPersonal DashboardSubmit Responses

Role Assignment Best Practices

Security Principles

  • • Follow principle of least privilege
  • • Assign roles based on job functions
  • • Regularly review and audit role assignments
  • • Document role assignment decisions
  • • Remove roles when no longer needed
  • • Use temporary roles for short-term access

Management Guidelines

  • • Maintain role assignment records
  • • Implement approval workflows
  • • Train users on their role responsibilities
  • • Monitor role usage and access patterns
  • • Plan for role transitions and succession
  • • Regular role effectiveness reviews

Common Assignment Scenarios

New Employee Onboarding

Assigning roles to new team members

  1. 1Start with Auditee role for basic access
  2. 2Add department-specific permissions
  3. 3Upgrade role based on job responsibilities
  4. 4Provide role-specific training

Role Promotion

Upgrading user roles for increased responsibilities

  1. 1Review current role and permissions
  2. 2Assess new job requirements
  3. 3Assign appropriate higher-level role
  4. 4Remove unnecessary previous permissions

Temporary Access

Providing temporary elevated access

  1. 1Define specific access requirements
  2. 2Set clear expiration date
  3. 3Document business justification
  4. 4Schedule automatic role removal

Quick Actions

User Management

Access user management to assign roles

Role Overview

Learn about different user roles

Authentication

Back to authentication overview

Security Considerations

  • • Always follow the principle of least privilege when assigning roles
  • • Regularly audit and review role assignments for appropriateness
  • • Document all role changes with business justification
  • • Remove roles immediately when users change positions or leave
  • • Monitor for unusual access patterns or privilege escalation
  • • Implement approval workflows for sensitive role assignments