System Roles in DTSS and Connector Services

You can manage the DTSS and Connector services through a few system roles.

The following System roles provide different rights over the DTSS and Connector Services:

  • ROLE_SFDC_CONNECTOR_ADMIN
  • ROLE_SFDC_CONNECTOR
  • ROLE_DNB_CONNECTOR_CONFIG
  • ROLE_DTSS_DT_MANAGER
  • ROLE_DTSS_CT_MANAGER
  • ROLE_DTSS_DEPLOYER

ROLE_SFDC_CONNECTOR_ADMIN

The following images shows the available privileges on resources and sub-resources within the SFDC Connector service in the User Management application in Console for the ROLE_SFDC_CONNECTOR_ADMIN role:

Permissions Matrix for the ROLE_SFDC_CONNECTOR_ADMIN role

In the Permissions Framework, these same resources, sub-resources, and permissions would translate to the following information:

Table 1. ROLE_SFDC_CONNECTOR_ADMIN - Details
Service.Resource.Sub-resource ID Label Allowed Privileges Purpose
sfdc.environment.restart SFDC restart READ SFDC Connector restart
sfdc.data.convert Convert reltio entity to SFDC object or vice versa EXECUTE Makes SFDC Connector to convert a Reltio entity into Salesforce object or vice versa
sfdc.data.frcsfsnc SFDC Connector force Salesforce to Reltio syncing READ SFDC Connector force Salesforce to Reltio syncing
sfdc.monitoring.logging SFDC Connector logs READ/UPDATE SFDC Connector logs
sfdc.monitoring.status SFDC Connector status READ SFDC Connector status
sfdc.config.clrqueue SFDC Service - Clean internal event queues DELETE Clean internal event queues
sfdc.config.genpkcfg SFDC Connector package configuration generator READ SFDC Connector package configuration generator
sfdc.config.setup Setup tenant configuration and mapping CREATE/READ/DELETE Setup tenant configuration and mapping
sfdc.config.verify Verify credentials EXECUTE Verify credentials
sfdc.config.clsetup Setup custom logic tenant configuration and mapping CREATE/READ/DELETE Setup custom logic tenant configuration and mapping
sfdc.config.mapverif SFDC Connector mapping verification READ SFDC Connector mapping verification
sfdc.config.cfgencr SFDC Connector config encryption READ SFDC Connector config encryption
sfdc.config.register Register a tenant for synchronization CREATE/DELETE Enable or disable synchronization for a tenant profile
sfdc.sync.byuris Manual Sync EXECUTE SFDC Connector Manual Update
sfdc.sync.merge Manual Merge EXECUTE SFDC Connector Manual Merge
sfdc.sync.state Synchronization State READ Check SFDC Synchronization State

ROLE_SFDC_CONNECTOR

The following images shows the available privileges on resources and sub-resources within the SFDC Connector service in the User Management application in Console for the ROLE_SFDC_CONNECTOR role:

Permissions Matrix for the ROLE_SFDC_CONNECTOR role

In the Permissions Framework, these same resources, sub-resources, and permissions would translate to the following information:

Table 2. ROLE_SFDC_CONNECTOR - Details
Service.Resource.Sub-resource ID Label Allowed Privileges Purpose
sfdc.data.convert SFDC Service - Convert reltio entity to SFDC object or vice versa EXECUTE Makes SFDC Connector to convert a Reltio entity into Salesforce object or vice versa
sfdc.data.frcsfsnc SFDC Connector force Salesforce to Reltio syncing READ SFDC Connector force Salesforce to Reltio syncing
sfdc.monitoring.logging SFDC Connector logs READ/UPDATE SFDC Connector logs
sfdc.monitoring.status SFDC Connector status READ SFDC Connector status
sfdc.config.genpkcfg SFDC Connector package configuration generator READ SFDC Connector package configuration generator
sfdc.config.setup Setup tenant configuration and mapping CREATE/READ/DELETE Setup tenant configuration and mapping
sfdc.config.verify Verify credentials EXECUTE Verify credentials
sfdc.config.mapverif SFDC Connector mapping verification READ SFDC Connector mapping verification
sfdc.config.cfgencr SFDC Connector config encryption READ SFDC Connector config encryption
sfdc.config.register Register a tenant for synchronization CREATE/DELETE Enable or disable synchronization for a tenant profile
sfdc.sync.byuris Manual Sync EXECUTE SFDC Connector Manual Update
sfdc.sync.merge Manual Merge EXECUTE SFDC Connector Manual Merge
sfdc.sync.state Synchronization State READ Check SFDC Synchronization State

ROLE_DNB_CONNECTOR_CONFIG

The following images shows the available privileges on resources and sub-resources within the DnB Connector service in the User Management application in Console for the ROLE_DNB_CONNECTOR_CONFIG role:

Permissions Matrix for the ROLE_DNB_CONNECTOR_CONFIG role

In the Permissions Framework, these same resources, sub-resources, and permissions would translate to the following information:

Table 3. ROLE_DNB_CONNECTOR_CONFIG - Details
Service.Resource.Sub-resource ID Label Allowed Privileges Purpose
DnB.dnbconfig.createprofile DnB Connector Service - Create new empty profile CREATE DnB connector create new empty profile
DnB.dnbconfig.deltenant Remove tenant DELETE DnB Connector remove tenant from profile
DnB.dnbconfig.profget Get profile READ DnB Connector get profile
DnB.dnbconfig.proflist Enumerate profiles READ DnB Connector get profiles list
DnB.dnbconfig.regtenant Register tenant UPDATE DnB Connector add tenant to profile

ROLE_DTSS_DT_MANAGER

The following images shows the available privileges on resources and sub-resources within the DTSS service in the User Management application in Console for the ROLE_DTSS_DT_MANAGER role:

Permissions Matrix for the ROLE_DTSS_DT_MANAGER role

In the Permissions Framework, these same resources, sub-resources, and permissions would translate to the following information:

Table 4. ROLE_DTSS_DT_MANAGER - Details
Service.Resource.Sub-resource ID Label Allowed Privileges Purpose
dtss.monitoring DTSS Service - Monitoring READ Monitor different actions
dtss.config.registration Tenant Registration READ Configuration related to register tenants
dtss.config.subscription Tenant Subscription READ/UPDATE Configuration related to subscribe tenants
dtss.config.subscription.security Metadata Security READ/UPDATE DT metadata security related configuration
dtss.config.subscription.support Tenant Subscription - Support READ/UPDATE API to configure the support email
dtss.tasks DTSS Tasks READ DTSS tasks management APIs

ROLE_DTSS_CT_MANAGER

The following images shows the available privileges on resources and sub-resources within the DTSS service in the User Management application in Console for the ROLE_DTSS_CT_MANAGER role:

Permissions Matrix for the ROLE_DTSS_CT_MANAGER role

In the Permissions Framework, these same resources, sub-resources, and permissions would translate to the following information:

Table 5. ROLE_DTSS_CT_MANAGER - Details
Service.Resource.Sub-resource ID Label Allowed Privileges Purpose
dtss.data DTSS Service - DT Data READ/UPDATE/EXECUTE DT data related access
dtss.monitoring DTSS Service - Monitoring READ Monitor different actions
dtss.config.registration Tenant Registration READ Configuration related to register tenants
dtss.config.subscription Tenant Subscription READ/UPDATE Configuration related to subscribe tenants
dtss.config.subscription.mapping Tenant Subscription - Transformation Mapping READ/UPDATE API to configure the transformation Mapping of attributes from DT to CT
dtss.config.subscription.view Tenant Subscription - Attribute Format READ/UPDATE API to configure the DT data attribute slice as bringGoldenRecord or bringInternalSources
dtss.config.subscription.import Tenant Subscription - Import READ/UPDATE APIs to configure the format of data getting imported into CT from DT
dtss.config.subscription.sync Tenant Subscription - Sync Config READ/UPDATE Synchronization config related to the subscriptions
dtss.config.subscription.support Tenant Subscription - Support READ/UPDATE API to configure the support email
dtss.config.subscription.events Tenant Subscription - Events Config READ/UPDATE Configure the events needs to be processed for the subscription
dtss.tasks DTSS Tasks READ/UPDATE/DELETE/EXECUTE DTSS tasks management APIs

ROLE_DTSS_DEPLOYER

The following images shows the available privileges on resources and sub-resources within the DTSS service in the User Management application in Console for the ROLE_DTSS_DEPLOYER role:

Permissions Matrix for the ROLE_DTSS_DEPLOYER role

In the Permissions Framework, these same resources, sub-resources, and permissions would translate to the following information:

Table 6. ROLE_DTSS_DEPLOYER - Details
Service.Resource.Sub-resource ID Label Allowed Privileges Purpose
dtss.data DTSS Service - DT Data READ/UPDATE/EXECUTE DT data related access
dtss.monitoring DTSS Service - Monitoring READ Monitor different actions
dtss.config.registration Tenant Registration CREATE/READ/UPDATE Configuration related to register tenants
dtss.config.subscription Tenant Subscription CREATE/READ/UPDATE Configuration related to subscribe tenants
dtss.tasks DTSS Tasks READ/UPDATE/DELETE/EXECUTE DTSS tasks management APIs