Speed up widget development with Sitefinity MCP server. Learn more...

Topics

All topics

Roles

A role is a group of users associated with a set of privileges. Roles are an efficient way to manage permissions for groups of users because they let you classify users with similar responsibilities and grant access accordingly. Roles also determine which parts of Sitefinity a user can view.

Sitefinity includes predefined roles that have permissions assigned by default, such as Authors, Editors, and Designers. You can delete these roles, if you do not need them. To view the permissions assigned to a default role, in the main menu, click Administration » Roles and click its Permissions link. If a role has permission for a certain action, the system displays green checkbox in column Allow.

You can define the set of privileges for each role and assign users to roles. All users assigned to a given role inherit the permissions defined for this role. A user can be assigned zero, one, or many roles.

IMPORTANT: The predefined backend roles Authors, Editors, Designers, and Administrators are intended for highly trusted users. The permissions assigned to these roles can affect the confidentiality, integrity, and availability of the system. These roles are designed to separate responsibilities, not trust levels. In other words, they are a functional boundary, not a security boundary. Assign these roles only to trusted personnel and, when possible, limit access to the administrative interface.  

Following is a list of special roles:

  • Administrators role
    The Administrators role is automatically created with each new Sitefinity project. It is granted full global, content modules, and sitemap permissions.You cannot:
    • Restrict the permissions granted to the Administrators role.
    • Delete the Administrators role.
    • Delete the last user in the Administrators role.
  • BackendUsers role
    The BackendUsers is a role for users who have access to the backend. It is possible to have registered users, who can authenticate, but do not have access to the backend, such as registered forum users. These users do not belong to the BackendUsers role. All other users that can access the backend belong to this role.
    You cannot:
    • Restrict the permissions granted to the BackendUsers role.
    • Delete the BackendUsers role.
    • Delete the last user in the BackendUsers role.
  • Authenticated
    These are registered users that have supplied their credentials. These users can belong to any role. Authenticated can be users that do not have access to the backend.
  • Anonymous
    These are users that are not registered and have not supplied credentials. For example, unregistered users that are browsing the frontend.
  • Everyone
    Everyone is a role that includes all users, including the Anonymous users.
  • Users role
    This is a built-in role that serves as a placeholder. The role has no granted permissions. You can change the permissions of the role, or you can use it to filter the grid for users who have no permissions.

Roles page

You manage roles on Roles page.

To open the Roles page, in the main menu in the upper part of the screen, click Administration » Roles.
NEW TO SITEFINITY?

Want to learn more?

Enhance your Sitefinity skills by enrolling in free training sessions. Become Sitefinity certified through Progress Education Community to strengthen your professional credentials.

Get started with Integration Hub | Sitefinity Cloud

This free lesson teaches administrators, marketers, and other business professionals how to use the Integration hub service to create automated workflows between Sitefinity and other business systems.

Web Security for Sitefinity Administrators

This free lesson teaches administrators the basics about protecting your Sitefinity instance and its sites from external threats. Configure HTTPS, SSL, allow lists for trusted sites, and cookie security, among others.

Foundations of Sitefinity ASP.NET Core Development

The free on-demand video course teaches developers how to use Sitefinity ASP.NET Core and take advantage of its decoupled architecture and modern development model.

Was this article helpful?

Next article

Permissions