Note: Users granted a role and its permissions in one scope do not automatically receive the same access in other scopes, ensuring that each client operates independently.
System Administrator’s Scope
System Administrator’s Scope is designed for system administration and has only one role, System administrator. Users with this role have access to the ABBYY Vantage system administrator interface and can:- Manage tenants (view the tenant list, create and delete tenants, manage tenant subscriptions)
- Manage users within System Administrator’s scope (view the user list for that scope, create and delete users)
Tenant’s Scope
Tenant’s Scope is designed to manage users within a tenant and has the following roles.Tenant Administrator
A Tenant Administrator has all scope permissions and can:- Add users
- Assign roles (any)
- Grant a Skill User rights to a specific list of skills and their stages
- Grant a Skill User rights to all skills (all current and any further) and their stages
- Create skills
- Publish skills
- Create, test, edit, and delete connections
- Access Skill Monitor to monitor the performance of the system
- Add other tenants if the Fulfillment Operator role has been assigned to them by the System Administrator. For more information, see Creating a Tenant via the Vantage API.
Skill Designer
The Skill Designer can create new skills and define their purpose within business processes. This role includes full permissions for existing skills and allows the user to:- Process documents using skills
- Copy skills
- Edit skills
- Export skills
- Delete skills
- Publish skills
- View skills in the Skill Monitor
- Create, test, edit, and delete connections
Skill User
The Skill User can work with any skills they are authorized to access, including processing documents, retrieving results, and viewing demo documents. This role is intended for both end users and applications that integrate with ABBYY Vantage (such as mobile apps).Manual Review Operator
The Manual Review Operator can perform manual reviews at designated Process skill stages. This role can be granted access to selected skills and stages or to all skills and stagesProcessing Supervisor
The Processing Supervisor can monitor transactions as they move through the skills and initiate manual reviews at defined Process skill stages. With this role, the Process Supervisor can:- Perform Manual Review client tasks.
- Use Skill Monitor to view, open, and cancel transactions for authorized skills, and view associated transaction logs.
Permissions Matrix
The following table lists access groups and permissions for various roles in Tenant’s Scope.| Access Group | Permissions | Tenant Administrator | Skill Designer | Skill User | Manual Review Operator | Processing Supervisor |
|---|---|---|---|---|---|---|
| Administration | Assigning a role | Yes | No | No | No | No |
| Reviewing a subscription | Yes | No | No | No | No | |
| Change tenant settings (managing Vantage API clients and connection to an external identity provider) | Yes | No | No | No | No | |
| Create, test, edit, and delete connections | Yes | Yes | No | No | No | |
| Documents | Process documents in the Documents view | Yes | Yes | Yes (only with permission to Default Process skill) | No | No |
| Skill Catalog | Finding a skill | Yes | Yes | Yes (only allowed skills) | No | No |
| Trying a skill | Yes | Yes | Yes (only allowed skills) | No | No | |
| Creating a skill | Yes | Yes | No | No | No | |
| Duplicating a skill | Yes | Yes | No | No | No | |
| Editing a skill | Yes | Yes | No | No | No | |
| Publishing a skill | Yes | Yes | No | No | No | |
| Exporting a skill | Yes | Yes | No | No | No | |
| Importing a skill | Yes | Yes | No | No | No | |
| Deleting a skill | Yes | Yes | No | No | No | |
| Discard unpublished changes to a skill | Yes | Yes (only their changes) | No | No | No | |
| Process documents using a skill | Yes | Yes | Yes (only allowed skills) | No | No | |
| Skill Monitor | Viewing a skill | Yes | Yes | No | No | Yes (only allowed skills) |
| Launching/stopping automatic export/import | Yes | No | No | No | No | |
| Viewing transactions | Yes | Yes | No | No | Yes (only allowed skills) | |
| Opening Manual Review client task | Yes | Yes | No | No | Yes (only allowed skills) | |
| Data Catalogs | Viewing a data catalog | Yes | Yes | No | No | No |
| Updating a data catalog | Yes | Yes | No | No | No | |
| Creating a data catalog | Yes | Yes | No | No | No | |
| Manual Review | Yes | No | No | Yes (only allowed skills and stages) | Yes (only allowed skills) | |
| Environment Variables | Creating, editing, and deleting secrets | Yes | No | No | No | No |
| Accessing secrets from skills, viewing the list of existing secrets in the script editor | Yes | Yes | No | No | No (only on Manual Review client) |