Configuring Users, Roles and Permissions
- Jessi Weithman
Table of Contents
About CollectionSpace Users
CollectionSpace supports two types of login methods: Username/Password and single sign-on (SSO) using SAML.
Upon installation, an Administrator and Reader user will be created as outlined below.
Additional CollectionSpace users, roles, and permissions are set up within the application.
Default Users
When you create a new CollectionSpace tenant for your museum, you will start with two users:
An Administrator user, assigned to the TENANT_ADMINISTRATOR role. (This user is granted all permissions, including the rights to create and configure the permissions for additional users.)
A Reader user, assigned to the TENANT_READER role. (This user can read all data, but can't make any changes.)
You will likely want to create additional users. Via the pages under CollectionSpace's Administration tab, you can:
Create new roles as needed, defining custom combinations of access permissions for each role.
Create new users.
Assign one or more roles to those users. (If a user has multiple roles assigned, they will be granted the most permissive set of permissions allowed by the union of those roles.)
Users, Roles, and Permissions
The User Manual available to CollectionSpace contributors includes additional information on setting up users and configuring roles and permissions. See CollectionSpace User Manual: Setting up Roles and Permissions.