Settings

Expand Settings to configure settings in the Modern Design interface. Currently, you can configure settings for managing roles across the Pentaho platform.

Manage roles

Managing roles and permissions is essential for security, compliance, operational efficiency, and a streamlined user experience. The Manage Roles page in the Modern Design interface gives administrators granular control over repository and file access, plugin access, and visibility of content and plugins for each role.

To manage roles, complete the following tasks, in order:

1. Find permissions

2. Edit permissions

3. Review and update permission changes

Find permissions

Get started with managing roles by finding the permission or set of permissions that you want to edit for the role.

To find permissions, complete the following steps:

1. Log into the Pentaho User Console (PUC).

2. Navigate to the Manage Roles page:

   • If you are using the Modern Design, in the menu on the left side of the page, expand Settings and click Roles.

   • If you are using the Classic Design, click Switch to the Modern Design, and then in the menu on the left side of the page, expand Settings and click Roles.

   The Manage Roles page opens.

3. Search for or browse to the role you want to manage.

4. To view the permissions that are currently assigned to the role, click View.

5. To edit the role's permissions, click Edit. The Edit permissions window opens.

   Note: Permissions cannot be changed for the Administrator role.

6. Navigate to one of the following sections:

   • System Permissions

   • Plugin Permissions

7. (Optional) To find a permission for a specific plugin, do one of the following:

   • In the Plugin Permissions box, search for the permission by name.

   • Expand the plugin section and browse to the permission.

What to do next: Edit individual permissions or multiple permissions at once. For details, see Edit permissions.

Edit permissions

Edit permissions to control the settings, content, and plugins a user can access and use in the Pentaho platform. Permissions are divided between two main categories, System Permissions and Plugin Permissions. You can edit permissions individually or all at once. For details, see the following sections:

• Edit System Permissions

• Edit Plugin Permissions

• Edit multiple permissions at once

Edit System Permissions

System permissions control which system settings a user with the assigned role can manage, including security, scheduling, configuration, and data access settings.

To enable or disable individual permissions in the System Permissions section, turn permission toggles on and off for each of the following permissions:

Edit Plugin Permissions

Plugin permissions control which plugins a user with the assigned role can view in the interface and what they can do while using the plugins they have access to.

To enable or disable individual permissions for a plugin, complete the following steps:

1. Find the plugin permission you want to edit by doing one of the following:

   • Search for the permission by name.

   • Expand the plugin section by clicking the chevron icon and browse to the permission for that plugin.

2. To enable or disable individual permissions for the plugin, expand the plugin section and then turn permission toggles on or off for each permission. The following plugin permissions are available for editing:

   • Semantic Model Editor permissions

     Plugin Permission

     Description

     Share Semantic Models

     Specifies whether the user can share semantic models with other users.

     Delete Semantic Models

     Specifies whether the user can delete semantic models.

     Change Connection of Semantic Models

     Specifies whether the user can change connections used by semantic models.

     View Semantic Models

     Specifies whether the user can view semantic models.

     Import Semantic Models

     Specifies whether the user can import semantic models into SME.

     Display SME Entry point

     Specifies whether the SME plugin is visible to the user in the PUC interface.

     Create Semantic Models

     Specifies whether the user can create semantic models.

     Edit Semantic Models

     Specifies whether the user can update semantic models.

   • Kettle Platform Plugin permission

     The Execute permission specifies whether a user can execute Pentaho Data Integration transformations and jobs directly and via schedules.

   • Pentaho Data Access permission

     The Execute permission specifies whether a user can execute Pentaho Data Integration transformations and jobs directly and via schedules.

Edit multiple permissions at once

In the Edit permissions window, in the top right corner of each section or plugin, a state-dependent button indicates the state of the permissions for that section or plugin. The System Permissions, Plugin Permissions, and permissions for each plugin section can be in one of the following three states:

• No Permissions

• All Permissions

• Permissions vary

To edit multiple permissions at once, you can do one of the following:

• Enable all permissions for a section or plugin by clicking the button and selecting All Permissions.

• Disable all permissions for a section or plugin by clicking the button and selecting No Permissions.

The Permissions vary state occurs for sections and plugins with multiple permissions that have a mix of enabled and disabled permissions.

Review and update permission changes

After you finish editing permissions for a role, review your changes and then update the role with the permissions you specified.

To review and update permission changes, complete the following steps:

1. Review the changes in the Edit permissions window.

   Note: To view only the permissions that were changed, in the Edit permissions widow, in the top-right corner, turn on the Show only what changed toggle.

2. Click Update.