System Privileges

System privileges apply to features that support applications but are not specific to applications. Examples include granting the user or group the ability to modify their user profile settings or log in to the system as another user. The following table describes each system privilege and the product-access types for which it applies.
CAUTION:
Granting the Remote Administration privilege to those with Regular User product access grants administrative access to all applications and system-level settings. Because of this, use caution when granting the Remote Administration privilege to users. To control administrators' access, grant them Managed Administration product access, the Remote Administration system privilege, and the appropriate set of Managed Administration privileges for their responsibilities. For details, refer to Managing Administrators.

Regular User, Managed Administrator, and Script/API

Occasional External On-premise Only Privilege Description
image image image Modify User Profile Settings – Allows users to modify their user profile settings. Users who are not granted this privilege can modify their profile as follows:
  • SBM User Workspace

    General tab settings, including out-of-office delegation.

  • Work Center

    General General, My Projects, and Feeds tab settings.

image   Logon as Another User – Allows users to log on to SBM User Workspace, SBM Application Administrator, and SBM Application Repository as another user without knowing that user's password. For best results, only grant this privilege to administrators who may need to view other user accounts for testing or troubleshooting purposes. When logged on as another user, administrators can perform all actions as the user they are logged in as. Any changes made to items in the SBM User Workspace as another user are recorded in the Change History section for each item.
image   Remote Administration – Allows users to connect to SBM System Administrator remotely and to SBM Application Administrator and Application Repository. When granted to users with Regular User product access, this privilege grants full administrative access to the system. For details, refer to Types of Administrators.
Note: Administrators cannot remove this privilege from their own account.
image   image Logon from SourceBridge – Allows access to various version control integrations that can be used to associate source control actions with primary items and record version control history. This privilege also enables users to create, run, modify, and delete Version Control Actions reports.
image image image image View Public Problems & Resolutions – Allows users to view problems and resolutions marked for public viewing in Knowledge Base folders they have privileges to view.

For details on this privilege, refer to Privilege Behavior for System Tables.

image image image View Your Contact Information – Allows users to view their personal contact information in fields in the Standard Fields section of their Contact record and on their user profile card.

For details on this privilege, refer to Privilege Behavior for System Tables.

image image image Edit Your Contact Information – Allows users to modify their personal contact information in fields in the Standard Fields section of their Contact record. Users must also be granted the View Your Contact Information.

For details on this privilege, refer to Privilege Behavior for System Tables.

image   image Assign Contact External User Access – Allows users to assign contacts external access to the system. For example, a customer support representative can assign a customer External access to the system from a Contacts table record. Users must also be granted privileges to view items in the system Contacts table. This privilege is granted on the Tables page.

This privilege pertains only to system Contacts table records that are associated with user accounts. This setting is located on the General tab when you add or edit a user account.

image   image Run System Reports – Allows users to run System reports. System reports allow users to view various aspects of the system configuration. They cannot be customized or deleted. There are nine system reports: Active Users, Group Membership, Item Locks, Current User Activity, Privileges, Project Fields, Users, Users Change History, and Workflow Fields.
image   image Create/Modify Pass-Through SQL Queries – Allows users to create and modify advanced SQL reports that use pass-through SQL queries. In addition to this privilege, users must be granted the Create/Modify Advanced SQL Queries privilege for at least one project or auxiliary table. This privilege is located on the Report and Table privilege pages.
image   Create/Edit/Delete Multi-Table Reports – Allows users to create, edit, and delete Multi-Table reports and to create reports from the Global Search feature. Users can only run Multi-Table reports and save Global Searches as reports in tables/projects for which they have privileges to run reports.
image Select Calendar for Hours of Operation – Allows users to specify a calendar in their user preferences to calculate when notification escalations are sent. This ensures that notification escalations are only generated during the hours defined in the calendar. For details, refer to About Calendars.
image image Connect using the API – Allows users to connect to SBM using the C++ API. To obtain documentation about the SBM API, visit http://www.serena.com/support.
image CC Scheduled Reports to Other Users – Allows users to CC scheduled reports to other users and groups.