# Sample users, default roles, and permissions
By viewing the sample users and default roles you can get ideas about ways to define actual users and specific roles.
1. Open the PDI client and log into the repository.
See the **Pentaho Data Integration** document for details on the Pentaho Repository.
2. Click **Tools** > **Repository** > **Explore**, then select the **Security** tab.
3. Choose if you want to manage security by **Users**, **Roles**, or **System Roles**:
* Select **Users** then highlight a user to display the user's role and a description, if any.
* Select **Roles** then highlight a role in the **Available** list to display **Permissions** for the user's role, as defined by the checked boxes. These roles, added for your convenience, can be removed or altered based on your needs.
| Default Role | Sample User | Permissions |
| ---------------- | ----------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
| Administrator | admin | - Administer Security
- Schedule Content
- Read Content
- Publish Content
- Create Content
- Execute
- Manage Data Sources
|
| Power User | suzy | - Schedule Content
- Read Content
- Publish Content
- Create Content
- Execute
|
| Report Author | tiffany | - Schedule Content
- Publish Content
|
| Business Analyst | pat | |
Each default role and sample user comes with a standard set of permissions, which provides for a specific set of capabilities when using Pentaho tools and the Pentaho Server.
| Permissions | Definition |
| ------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| Administer Security | The default Administrator role automatically conveys all operation permissions to users assigned to that role, even if the check box next to it is cleared. This includes the Read Content and Create Content permissions, which are required for accessing the Administration perspective:- Allows access to and the ability to manage all content in each perspective.
- Allows the ability to view and work with all user schedules in the Schedules perspective.
|
| Schedule Content | - Allows the user to schedule reports and content.
- Gives the user the ability to view, edit, or delete their own schedules using the Schedules perspective.
|
| Read Content | - Gives the user the ability to view content in each perspective.
|
| Publish Content | - Allows the user to store reports or data models in the Pentaho Repository.
|
| Create Content | - Allows the user to create, import, delete, and save jobs and transformations to the repository.
- Gives the user the ability to see the data sources that are used to create jobs and transformations.
- When the user is also granted the Execute permission, users can export jobs and transformations, copy and paste, and save the file in a virtual file system (VFS).
|
| Execute | - Allows the user to run, preview, debug, replay, verify, and schedule.
- When the user is also granted the Create permission, users can export jobs and transformations, copy and paste, and save the file in a VFS.
|
| Manage Data Sources | - Allows the user to create, edit, or delete new data sources.
- Gives the user the ability to see a list of repository data sources.
|
\- Select \*\*System Roles\*\* then highlight a role in the \*\*Available\*\* list to display the \*\*Permissions\*\* for the user's system role. System roles are built-in roles used to control default behaviors and permissions of the repository, handled implicitly or through system configuration, with automatic assignments.