Read and Review Automation Anywhere Documentation

Automation 360

Close Contents

Contents

Open Contents

Feature permissions for a role

  • Updated: 10/05/2021
    • Automation 360 v.x
    • Explore
    • RPA Workspace

Feature permissions for a role

A user with the AAE_Admin role or a custom role with the Manage roles permission can create and assign roles to users to provide them with access to features and operations.

We recommend that you create individual roles with specific permissions. You can then assign the limited roles to users with that specific permission requirement.

Automation Anywhere Robotic Interface (AARI)

Permission Description
Cross Team Read View all teams and see the team members
Cross Process Read View all processes and see team members and managers
Team Management Create and view teams, edit team names, descriptions, and process tags. Add new teams, team members, and assigned processes
Task Management Submit and view tasks from processes that are assigned to the team
Case Management Create and view requests from processes that are assigned to the team
Global Case Management View process requests and tasks.
Note: This permission does not grant the capability to create a request or submit a task
Global Process Management View checked-in public processes and assigned managers and teams, edit process tags, and assign managers and teams
Note: This permission does not grant the capability to create a process.
Global Team Management View teams and assigned users, edit team names and descriptions. Add new processes, managers, and users to a team
Note: This permission does not grant the capability to create a team.

API

Permission Description
Bot Insight Data API Allows access to Bot Insight RESTful APIs to the data logged by the Control Room and by a task during production runs.
Generate API-Key Users can generate an apiKey that can be used in the Authentication API.
Authenticate with username and password API
Note: Users without the generateapikey permission can use APIs by authenticating using their username and password.

Authenticate with username and apiKey API

Activity

Permission Description
View my In progress activity Allows users to view their own activity.
Note: All roles have this permission by default.
Manage my In progress activity Allows users to pause, resume, or cancel their own activity and move their finished activities to history.
View everyone's In progress activity Allows users to monitor ongoing automations where the user has either run or schedule access on the respective bot.
Manage everyone's In progress activity Allows users to monitor and manage ongoing automations where the user has either run or schedule access on the respective bot. Users can also move the finished automations to history.
View my scheduled bots Allows users to see their scheduled bots regardless of which user scheduled the bot.
Schedule my bots to run Allows users to schedule their bots to run. In addition, users require permission to view and manage Bot Runners.
Edit my scheduled activity Allows users to edit their scheduled bots, even if the bots are scheduled by a different user.
Delete my scheduled activity Allows users to delete schedules for any of their bots regardless of which users scheduled the bot.
View and manage ALL scheduled activity from my Folders Allows users to view, edit, and delete all the schedules on the bot folders to which that they have access. This includes the schedules that the user created or schedules created by other users.
View and manage ALL scheduled activity Allows users to view, edit, and delete all the schedules in the system. This includes the schedules that the user created or schedules created by other users.

Audit log

Permission Description
View everyone's audit log actions Allows users to view all audit log activity for the Control Room

Bots

Permission Description
View my bots Allows users to view the bots they created and bots that were assigned to them.
Note: You must assign this permission before assigning any other bots permissions.
Run my bots Allows users to run the bots they created and bots that were assigned to them.
Export bots Allows users to export bots and related bot dependencies for which they have download permission.
Import bots Allows users to import bots and bot dependencies for which they have upload permission.
Create folders Allows users to create folders within the folders that they have access to.

Rename folders

Allows users to rename the folders to which they have access.
Note: Only empty folders can be renamed.

Cancel checkout

Allows users to cancel bot checkout and unlock the file from the public repository.

Bot Store

Permission Description
View Bot Store Allows users to view Bot Store.
Add bots from Bot Store to My Bots Allow users to add bot packages from Bot Store to their Control Room private workspace.
Submit bots to Bot Store Allow users to submit bot packages to Bot Store.

Credentials and lockers

Permission Description
Manage my credentials and lockers Allows users to create, edit, and delete their own credentials. In addition, the user can interact with credentials from their assigned lockers.
Note: All roles have this permission by default.
Manage my lockers Allows users to create and manage their own lockers.
Create standard attributes for a credential Allows users to create a standard attribute for a credential that is shared across all users of that credential .
View and edit ALL credentials attributes value Allows users to view and edit attributes that belong to other users.
Bot Auto-Login Credentials API Allow users to automate the login process to run bots remotely.
Note: A user with the AAE_Locker Admin role can view all credentials and lockers in the Control Room. See System roles.

Dashboards

Permission Description
View dashboards Allows users to view the dashboard.
Note: All roles have this permission by default.

Devices

Permission Description
Register device Allows users to register a local host device. Manage devices
View and manage ALL devices Allows users to view and manage all devices in the Control Room.
Attest device credentials Allows users to attest device credentials for Bot Runner users. You can deploy bots on user devices with unlocked and active user session without a system password to bypass credential validation.
Note: This permission works only if the auto-login setting Reuse an existing session is selected in the Control Room by the administrator.
Delete devices Allows users to delete devices that they registered.
Edit the devices Allows users to edit the devices that they have permission to see.
View and manage myBot Creators, Bot Runners and device pools Allows users to view and manage Bot Creators, Bot Runners, and device pools.
Note: All roles have this permission by default.
Create device pools Allows users to create and manage their own device pools.
Note: A user with the AAE_Pool Admin role can manage all device pools in the Control Room. See System roles.

Discovery Bot process

Permission Description
View assigned process Allows users to view assigned processes.
Note: This is the standard permission. You must assign this permission before assigning any process discovery permissions.
View all processes Allows users to view all the defined processes.
Edit process Allows users to create and edit processes.

Discovery Bot recording

Permission Description
View all recordings Allows users to view all recordings.
View own recording Allows users to view their own recording.
Note: You must assign this permission before assigning any of the following permissions.
Run recorder and create recording Allows users to run the recorder and create recording.
Edit own recording Allows users to edit their own recording.
Delete own recording Allows users to delete their own recording.

Discovery Bot aggregation

Permission Description
View all aggregation Allows users to view all aggregations.
View own aggregation Allows users to view their own aggregations.
Note: You must assign this permission before assigning any of the permissions below.
Create or delete own aggregation Allows users to create and delete aggregations.
Edit aggregation Allows users to update aggregations.
View system generated aggregation Allows users to view system aggregations.

Discovery Bot opportunity

Permission Description
View all opportunities Allows users to view all opportunities.
View opportunity Allows users to view opportunities within assigned process.
Note: You must assign this permission before assigning any of the permissions below.
Create or delete opportunity Allows users to create and delete opportunities within the assigned process.
Convert to bot Allows users to convert an opportunity to a bot.
Export opportunity Allows users to export an opportunity.

Event triggers

Permission Description
View event triggers Allows users to view event triggers.
Manage event triggers Allows users to view and manage event triggers.
Note: You must assign the view permission before assigning this permission.

IQ Bot

Permission Description

View IQ Bot

Allows users to view the default dashboards in the IQ Bot portal.
Note: You must assign this permission before assigning any of the other IQ Bot permissions.

IQ Bot administration permissions

Permission ID Description
View Administration Allows users to access the Administration tab in the IQ Bot portal.
Note: You must assign this permission before assigning any other administration permissions.
View and manage settings Allows users to manage the IQ Bot portal advanced configuration settings.
View and manage migration Allows users to access the migration utility to import and export learning instances in the IQ Bot portal.

IQ Bot domains permissions

Permission Description
View domains Allows users to view all domains in the IQ Bot portal.
Note: You must assign this permission before assigning any other domain permissions.
Create domains Allows users to create domains in the IQ Bot portal.
Import domains Allows users to import domains in the IQ Bot portal.
Export domains Allows users to export domains in the IQ Bot portal.

IQ Bot learning instance permissions

Permission Description
View learning instances Allows users to view their learning instances in the IQ Bot portal.
Note: You must assign this permission before assigning any other learning instance permission.
View learning instances from the same role Allows users to view learning instances created by other users with the same role in the IQ Bot portal.
View ALL learning instances Allows users to view all learning instances in the IQ Bot portal.
Launch validator Allows users to access the IQ Bot Validator to review and update documents with exceptions.
Create learning instances Allows users to create learning instances in the IQ Bot portal.
Edit learning instances Allows users to edit learning instances in the IQ Bot portal.
Delete learning instances Allows users to delete their learning instances in the IQ Bot portal.
Send learning instances to production Allows users to send their learning instances to production in the IQ Bot portal.
Train learning instance groups

Allows users to train their learning instance groups in the IQ Bot portal.

Package manager

Permission Description
View packages Allows users to view packages.
Manage packages Allows users to view and manage packages.

Licenses

Permission Description
View licenses Allows users to view the license details for the Control Room.
Manage user's device licenses Allows users to assign device licenses to other users.
Install licenses Allows users to install Automation 360 licenses for the Control Room.

Migration

Permission Description
View migration Allows users to view new migrations, but not run them
Note: You must assign this permission before assigning the manage migration permission
Manage migration Allows users to view and run new migrations
Allow a Bot Runner user to run migrations Allows Bot Runner Run-as user to update the bot conversion status in the Control Room

Settings

Note: Only a user with the AAE_Admin role has the capability to view and manage settings in the Control Room. See System roles.

Users and roles

Permission Description
View users Allows users to only view all other users in the system. They cannot create, edit, or delete users.
Note: You must assign this permission before assigning the Create user Update user, or Delete user permission.
Delete users Allows users to delete other users the Control Room.
Create users Allows users to create new users in the Control Room.
Edit users Allows users to edit all users in the system.
View roles Users with this permission are able to view the roles in the Control Room.
Note: You must assign this permission before assigning the Manage roles permission.
Manage roles Allows users to view and manage all roles in the Control Room.
View users and roles basic information Allows users to view basic information on users and roles in the Control Room.

Workload

Permission Description

View and manage my queues

Allows users to view and manage their own schedules.
Create queues Allows users to create and manage their own queues.
SLA Calculator Allows users to calculate workload service-level agreements (SLA).
Note: A user with the AAE_Queue Admin role has all the workload permissions. In addition, the AAE_Queue Admin can manage all the queues in the Control Room. See System roles.
Send Feedback