> For the complete documentation index, see [llms.txt](https://docs.adaptiva.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.adaptiva.com/platform-guide/security/rbac.md).

# Role-based Access Control

## Role-based Access Control (RBAC) in the OneSite Platform

You can use built-in roles and/or create custom roles to meet your organization’s needs.

RBAC allows you to:

* Assign permissions to specific job functions like operations
* Maintain data protection and regulatory compliance
* Protect sensitive data with the principle of least privilege
* Create branch office administrators for specific business units (Patch only)

## Explore the security roles

1. Log in to the Adaptiva Admin Portal.
2. Click the **gear icon > Settings > Security > Roles**.

The root roles for the OneSite platform are in the Roles folder, while folders will exist for product specific roles when licensed.

![Roles Panel](/files/vLwoxJEqLdOjJDtuTOh9)

## View a role and assign members to it

You can view the permissions and membership of a role in the role details.

1. Select a role to open the properties page. You can view the role assignments and permissions detail for the role.
2. Under Direct Administrators, click **Browse** and select a user to associate with this role and click **OK**.
3. Click **Save**.

## Create a custom role

You can create a custom role in the **Role** security settings.

1. On **Roles** panel, select the **Roles** folder.
2. Click **New**.
3. Enter a name and description for the role (ie. Security Analyst).
4. On the detail page for the role, scroll down to Permissions.
5. Click **Create New Permissions**.
6. Next to Class, click **Browse**.
7. On the Class Permission Definition page, search for OIDC, and select **OidcProvider**.
8. Click **OK**.
9. On the Class Level Permissions page, under Permissions, configure the following: a. Read: Allow b. Export: Allow
10. Click **Save**.

## Audit role permission with Permissions Viewer

You can use Permissions Viewer to see the permissions scope for any role or user you configure.

1. Click the **Permissions Viewer** navigation tab.
2. Next to Role, click **Browse**.
3. Select a role (ex. Security Analyst) and click **OK**.
4. Under Object Scope, type OIDC and then select **OIDCProvider**. In the Resultant Permissions pane, you can see the permissions this role has on the OidcProvider class.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://docs.adaptiva.com/platform-guide/security/rbac.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.