# system roles ## About the system role The settings in **System roles** govern the permissions for options that apply system-wide.\ The options controlled by this role remain the same across all projects. Each user always has exactly 1 system role. Users cannot have more than 1 system role at the same time. ## Default system roles By default, eliona is delivered with the following roles: ### system owner This role is created during system deployment and has **all** permissions. * The "System-Owner" role is the only role that can create new system roles. * The "System-Owner" role is the only role that can grant the "System-Admin" role. ### System-Admin A role with extensive permissions. Users with this role can, among other things, create new users. Users with the "System-Admin" role can give other users **NOT** the role **"**"System-Admin". ### System-User This role is automatically assigned to every newly created user. Users with this role have no write permissions whatsoever and can create neither new System-Admins nor new System-Users. {% hint style="info" %} Default roles cannot be changed or deleted. {% endhint %} ## Create a custom system role {% hint style="info" %} Only holders of the "System-Owner" system role can create new system roles. {% endhint %} You can create and customize an unlimited number of custom roles. Proceed as follows to create a new system role {% @supademo/embed demoId="bb1-CwIMkdiuUCmi78DJU" url="" fullWidth="true" %} ## System role options

{% hint style="info" %} Disable a universal toggle to hide the corresponding menu item {% endhint %}


A	Name	Name of the system role
B	Role Access	If this switch is enabled, other authorized users (e.g. admins) can assign this role to users. -> More info
C	Universal toggle "Asset"	Enable/disable all read and write access for the "Asset" function
C1	asset	Grant write access/read access for "Asset Modeling"
D	Universal toggle "Connection"	Enable/disable all read and write access for the "Asset" function Disable switch to hide menu item
D1	format	Grant write access/read access for "Format"
D2	Features	Grant write access/read access for the "Functions"
E	Universal toggle "Eliona"	Enable/disable all read and write access for the "eliona" function
E1	Projects	Grant write access/read access for "Projects"
E2	Provider	Grant write access/read access for "Provider"
E3	Roles	Grant write access/read access for "Roles"
E4	Tags	Grant write access/read access for "Tags"
E5	User	Grant write access/read access for "Users". If write access is enabled for this item, users with this system role can create new users.
F	Universal toggle "Monitoring"	Enable/disable all read and write access for the "Monitoring" function
F1	Monitoring	Grant write access/read access for "Monitoring"
G	Universal toggle "Settings"	Enable/disable all read and write access for the "Settings" function
G1	Apps	Grant write access/read access for "Apps"
G2	Audit Log	Grant write access/read access for "Audit Log"
G3	API Keys	Grant write access/read access for "API Keys"
G4	license	Grant write access/read access for "License"
G5	System	Grant write access/read access for "System"
G6	Templates	Grant write access/read access for "Templates"

## \[B] Role Access With this option you can define who can assign the corresponding system role to other users. This function can be configured separately for each system role.

**Switch enabled** \ This system role can be assigned by users whose system role has write permissions in the area *Roles* . **Switch disabled**\ This role can only be assigned by the System-Owner. ## Assign a system role to a user {% @supademo/embed demoId="B9-AfwFUnk\_k4AZXoz8wr" url="" fullWidth="true" %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.buildings.ability.abb/collection/english-v14/documentation/roles/system-roles.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.