The QMC is delivered with a set of predefined administration roles. Each role is associated with a security rules tailored for specific purposes as described below:
| Property | Description |
|---|---|
| RootAdmin |
Created on installation. This role is automatically assigned to the user who provided the first valid license key to the QMC. The RootAdmin has full access rights to all Qlik Sense resources. |
| AuditAdmin |
Has read access to all resources to enable auditing of access rights. |
| ContentAdmin | Has create, read, update and delete rights for all resources except nodes, engines, repositories, schedules and syncs. |
| DeploymentAdmin |
Has create, read, update and delete rights for apps, tasks, licenses, nodes, repositories, schedulers, proxies and engines. |
| SecurityAdmin |
Same as ContentAdmin but with create, read, update and delete rights for proxies as well and no access rights on tasks. |
The table below displays an overview of the default QMC administrator roles (in addition to the RootAdmin) and which parts of the QMC they can manage.
| QMC | SecurityAdmin | DeploymentAdmin | ContentAdmin | AuditAdmin |
|---|---|---|---|---|
| Streams | x | x | ||
| Apps | x | x | x | |
|
App objects |
x | x | ||
| Content libraries | x | |||
| Data connections | x | x | ||
| Extensions | x | |||
| Tags | x | x | x | x |
| Audit | x | x | x | |
| Nodes |
x |
|||
| Engines | x | |||
| Proxies | x | x | ||
| Repositories | x | |||
| Schedulers |
x |
|||
| Tasks | x | x | ||
| Reload tasks | x | |||
| User sync task | x | |||
| Triggers | x | |||
| License and tokens | x | |||
| Users | x | x | x | |
| User directory connectors | x | |||
| Security rules | x | |||
| Sync rules | x | |||
| Custom properties | x | x | x | |
| Certificates | x | x |
Did this page help you?
If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!