User Roles
User roles allow you to determine what privileges an employee will have when they login to the Discover dashboard. Discover supports two types of roles, system roles and custom roles.
Some of the role functionality described in this section is dependent upon the Gimmal Discover subscription level. For example, the system role eDiscovery Reviewer is only applicable if a subscription includes the eDiscovery module.
System Roles
These roles are pre-defined in Discover and are not modifiable by a customer. They include:
Administrator - provides full control over all of the Discover functionality
Discovery Reviewer - provides access to the eDiscovery module only. Allows search results to reviewed and labeled for collection purposes. Other module features are limited to ‘view only’ access
Policy Administrator - provides full access to the Data Governance module and limited access to features in the Administration module. Administration module access is limited to features related to Data Governance policies (i.e. data target searches, group management, Connector setup, etc.)
User - provides ‘view only’ access to any Gimmal Discover module that is included in the subscription
Custom Roles
This feature allows administrators to create User Roles that provide specific privileges as dictated by their organizational needs. To begin, click on the Administration module link at the top of the dashboard then select the Roles link found under the User Setup area in the left navigation pane:
.png?inst-v=906edbf4-8d2b-4acb-8839-b873138b5f54)
Hover over the green Action button and select Add to begin creating a new role. Enter a name for the new role, then select the areas of Discover that a user with this role can access by checking the on/off boxes.
Data Governance, Classification, eDiscovery, Analytics and Administration - these options permit access to the modules shown at the top of the dashboard
Settings - check this box to allow access to the Discover settings (pink gear shaped icon) found in the upper right hand corner of the dashboard along with some other user interface options like notifications
Logs - check this box to indicate that the role should allow access to the green log file link shown in the upper right hand corner of the Discover dashboard
Modules - check this box if the role should have access to the Administration area of Discover
.png?inst-v=906edbf4-8d2b-4acb-8839-b873138b5f54)
After checking the ‘on’ box for a module, click the ellipses (…) link to a view a list of chips that correspond to the specific privileges for available for the module. Clicking a specific privilege chip will toggle that privilege on for the role. After configuring the desired privileges, click the Add button to save the selections. The following sections provide more detail on the privileges available in each module.
Data Governance
Privilege | Feature | Description |
|---|---|---|
Policies | View | Allows the policy list to be viewed |
Create | Allows policies to be created | |
Delete | Allows policies to be deleted | |
Run | Allows policies to be started | |
Connect | Allows the Discover Workflow Editor application to connect to the tenant to create or modify workflows | |
Reports | Modify Summary | Allows the modification of summary reports |
View | Allows reports to be viewed | |
Modify | Allows changes to be made to report content. For setting a label on a report row. | |
Create | Allows the creation of summary reports | |
Delete | Allows reports to be deleted | |
View Summary | Allows summary reports to be viewed | |
Policy Settings | Update Settings | Allows access to the policy tab in the Discover settings area |
Clicking on a chip to select it will change its background color to blue to indicate that privilege is active. After selecting all of the appropriate chips for a role, press either the Add button to save the settings you have configured or the Cancel button to discard the edits that were made.
Classification
Privilege | Feature | Description |
|---|---|---|
Classification Functions | View | Allows the policy module to be accessed |
Modify | Allows classification policies to be modified | |
Create | Allows classification policies to be created | |
Delete | Allows classification policies to be deleted | |
Run | Allows classification policies to be started | |
Update Labels | Allows user access to work with classification labels | |
Classification Settings | Update | Allows access to the Classification tab in the Discover settings area |
Clicking on a chip to select it will change its background color to blue to indicate that privilege is active. After selecting all of the appropriate chips for a role, press either the Add button to save the settings you have configured or the Cancel button to discard the edits that were made.
eDiscovery
Privilege | Feature | Description |
|---|---|---|
Run | Allows access to the eDiscovery module | |
Holds | View | Allows the user to view custodian hold notices |
Modify | Allows the user to change custodian hold notices | |
Create | Allows the user to add custodian hold notices | |
Delete | Allows the user to delete custodian hold notices | |
Assign Questionnaire | Allows the user to create/edit custodian hold notice questionnaires | |
eDiscovery Settings | Update Settings | Allows access to the eDiscovery tab in the Discover settings area |
Searches and Collections | Set Reviewer | Allow user access to the ‘assign reviewer’ and ‘clear reviewer’ options in the search results grid |
Update labels | Allow user access to create new review labels | |
View | Allow user to see Searches, Search Results, and Collections | |
Modify | Allow user to modify Search or Collection settings | |
Create | Allow user to create Searches or Collections | |
Delete | Allow user to delete Searches or Collections | |
Matters | View | Allow user to view all matter settings |
Modify | Allow user to edit matter settings | |
Create | Allow user to create a matter | |
Delete | Allow user to delete a matter |
Clicking on a chip to select it will change its background color to blue to indicate that privilege is active. After selecting all of the appropriate chips for a role, press either the Add button to save the settings you have configured or the Cancel button to discard the edits that were made.
Analytics
Privilege | Feature | Description |
|---|---|---|
Analytics Configuration | View | Allows the user to access the analytics module |
Modify | Allows the user to modify analytics settings | |
Create | Allows the user to create the first analytics configuration | |
Delete | Allows the user to delete an analytics configuration | |
Run | Allows the start an analysis run | |
Analytics Dashboards | Add | Allows the user to create a new dashboard |
Update | Allows the user to modify dashboard settings | |
Delete | Allows the user to delete a dashboard | |
View | Allows a use access to the dashboards area of Analytics |
Clicking on a chip to select it will change its background color to blue to indicate that privilege is active. After selecting all of the appropriate chips for a role, press either the Add button to save the settings you have configured or the Cancel button to discard the edits that were made.
Settings
Privilege | Feature | Description |
|---|---|---|
General Settings | Update notifications | |
Update Settings | ||
View Notifications | ||
Generate Notification CSV | ||
Delete Notifications | ||
Authentication Settings | Update | Allows the user access to the authentication settings tab |
Connector Settings | Update | Allows the user access to the connector settings tab |
Single Sign-on Settings | Update | Allows the user access to the single-sign on settings tab |
Administrative Settings | Update Administrative | |
User Retention Settings | Update User Retention | Allows the user access to the user retention settings tab |
Clicking on a chip to select it will change its background color to blue to indicate that privilege is active. After selecting all of the appropriate chips for a role, press either the Add button to save the settings you have configured or the Cancel button to discard the edits that were made.