29 May 2024

System admin permissions

System administrators belong to groups with permissions to manage authorisation and integrations with SITS:Vision and UCAS. System administrators may also belong to groups with permissions to create workflows. Developers integrating third-party systems belong to groups with permissions to manage API integrations and streams.

Groups must be assigned to the Web app Edge admin to access system admin.

The table System admin details the features and corresponding authorisation area in system admin.

System admin features

Feature

Authorisation area

Description

Authorisation

Admin

Create roles and assign groups to roles.

Data Engine

Data Engine

Data Engine is described separately. For more information, go to Data Engine permissions.

Duplicate matching

People area Settings

Enable duplicate matching.

API integrations

Admin

Manage the API client credentials for integrations API access, such as the scopes that are granted to the client.

Admissions integrations

View and edit applications, person data, reference data, and staff.

Events integrations

Subscribe to events from admissions and reference data.

Reference data integrations

View and edit reference data.

SITS:Vision integration and UCAS integration

Integrations

Permissions for integrations with SITS:Vision and UCAS:

  • Authorisation management: details the authorisation groups that can be used to preconfigure applicants from a third-party system with access to Admissions features.

  • Events and errors: view events and errors in applications.

  • SITS pipeline: configure the secure connection between the SITS:Vision database and Admissions.

  • UCAS: configure the connection to the UCAS XML-Link.

Maytas integrations

Admin

Manage the API client credentials for integrations API access, such as the scopes that are granted to the client.

Maytas integrations

Permissions for full or read-only access.

Streams

Admin

Manage Azure event streams and event forwarding.

Workflow

Workflow

View and edit business entities, schemes, and workflows.

The roles and permissions of the authorisation areas are as follows: