Custom role People permissions allow admins to give specific employees admin-like access to People.
There are two types of permissions an admin can set for custom role owners:
- Global: Permission will apply to all users
- Targeted: Permissions only apply to the subset of employees that the admin has selected for the role owner. The role member(s) will not have access to the private information of other employees that fall outside of this subset. The role member will have access to view and edit Admin-only fields for employees in the targeted group.
Learn how to configure custom role admin permissions in Set Custom Role Admin Permissions.
Note: If integrated with an HRIS, all employee profile edits, including archiving, will need to be made directly within the HRIS. Otherwise, edits will be overridden upon the next sync.
Global permissions
The Global permission allows custom role owners to manage People for all users.
1. Invite new employees
The Invite new employees permission allows custom role owners to add new employees.
Permissions include:
Note: This permission only grants the ability to add or invite new users manually or via CSV upload. All updates to existing users initiated by this role will be ignored.
2. Manage employee fields
The Manage employee fields permission allows custom role owners to view and edit fields.
Permissions include:
3. Manage groups and group membership
The Manage groups and group membership permission allows custom role owners to create, and manage groups.
Permissions include:
Targeted permissions
The Targeted permission allows custom role owners to manage People for a subset of users.
1. Access admin directory and worker profiles
The Access admin directory and worker profiles permission allows custom role owners to access the admin Directory page and edit the fields selected in the Employee fields custom role permission.
Permissions include:
2. Access to deactivate workers
The Access to deactivate workers permission allows custom role owners to access the admin Directory page, edit the fields selected in the Employee fields custom role permission, and deactivate employees.
Permissions include:
Custom role owner view
The custom role owner will have an admin page they can access by clicking Switch to admin. Within the admin page, they will only see the People section.