User privileges

This topic describes the privileges that are available for HCL Compass users and user groups.

Active User
A default privilege for all new users. Allows users to log in to a user database and submit new records; modify existing records; and create, modify, and save personal queries, charts, and reports.
All Users/Groups Visible
A default privilege for all new users. Users can see information about all other users and groups.
Dynamic List Administrator
Perform all Active User tasks plus the following activity:
  • Edit dynamic lists.
Public Folder Administrator
Perform all Active User tasks plus the following activities:
  • Set and modify access permissions on any public folders for groups of which they are a member.
  • Set and modify the Change-Permission permission on any folder for groups of which the Public Folder Administrator is a member.
  • Create, modify, save, and delete public queries, charts, and reports.

Has Read-Write access on all public folders.

Schema Designer
Perform all Active User tasks plus the following activities:
  • Use the Designer to create and modify schemas. Add record types, define and modify fields, create and modify states and actions, add hooks to the schema, and update existing databases.
Cannot perform User Administrator tasks.
Security Administrator
Perform all Active User tasks plus the following activities:
  • Set and modify access permissions on all public folders for all groups, regardless of whether they belong to those groups.
  • Set and modify the Change-Permission permission on all public folders for all groups.
  • Create, modify, save, and delete public queries, charts, and reports.
  • Edit SQL for queries using the HCL Compass client.
  • Create and maintain security context records
  • View all records.

Has Read-Write access on all public folders.

SQL Editor
Perform all Active User tasks plus the following activity:
  • Edit SQL for queries in the HCL Compass client and build SQL statements for API calls in hooks.
Attention: Security context is implemented in the SQL code that builds queries. A user who has the SQL Editor privilege can bypass the security context.
Super User
Perform all Active User, All Users/Groups Visible, Dynamic List Administrator, Public Folder Administrator, Schema Designer, Security Administrator, SQL Editor, and User Administrator tasks including the following activities:
  • Use the Designer to create and delete databases and schemas.
  • Edit HCL Compass Web settings.
The admin user account that comes with the Designer has Super User privileges.
User Administrator
Perform all Active User and All Users/Groups Visible tasks plus the following activities:
  • Create users and user groups and assign and modify their privileges using the User Administration Tool. With the User Administrator privilege, you can only assign privileges that you have. For example, to assign the Schema Designer privilege to a user or group, you must have the Schema Designer privilege.
  • Create and modify user passwords, including passwords of Super Users.