You can decide the roles and permissions to govern access to individual workspaces and other content in your organization.
A user in Ardoq can have one of four roles:
- Contributor - Can only be granted access to Presentations and Surveys, not the main app (Currently this role is only supported for Active Directory with SAML-based SSO providers being supported soon).
- Reader - Can read content in the Ardoq app when granted access. Readers cannot be granted write or admin access to anything. When a reader belongs to a group that is given write access, the Reader will still only have read access to the content
- Writer - Can be granted read, write or admin access to workspaces
- Admin - Has access to configuring and setting up all Ardoq features. Has access to all workspaces.
Below you can see what users with different roles have access to, and further, down this page, you can see how to set individual permission per Workspace.
See an overview of permissions below:
You can also assign permissions to groups of users. Read more about that functionality here: https://help.ardoq.com/en/articles/3923652-permission-groups
Minimum workspace permissions
Minimum workspace permissions determine the minimum access the users in your organization will have to each workspace. You can give explicit users more access, but no user will have less access than the minimum. For example, you can allow all users to read and add explicit users that can write.
NB! The only exception is that an Ardoq read user will never have more access than read permissions.
Changing minimum workspace permissions
From an open Workspace click the main menu at the top right, choose Workspace and click on "Edit collaborators and permissions".
From the dashboard, click the 3-dot menu of the workspace you’d like to change minimum permissions for, then click on “Permissions”:
From the resulting screen, you can grant permissions to existing Ardoq users (read how to invite new users), to user groups, or change the permissions for the default group: All organization members
If you have a user with a Write role, and you want to grant this user access to write for one Workspace and only Read for another - set the minimum permission to No Permissions, search for a user in Find user, and grant that user Read-only access.