Understand roles and the permissions associated with them.
There are two sorts of role in Trelica:
- User roles. This is the role a user has when they log in to Trelica. User roles have specific permissions attached to them which control the data that the user can see and the actions that they can perform in Trelica.
- App roles. This is the role a person has in relation to a particular app (such as Slack or Okta). In Trelica, you can add people to app roles in order to identify the individuals responsible for particular apps. By default you can set the business owner and the IT contact for an app, but you can also create custom app roles.
App roles are assigned to people. If you want a person in an app role to log in to Trelica (for example, to view usage data, update license information or update tasks relating to their apps), you will need to invite them to log in to Trelica, making them a user.
In order to log in to Trelica, a user must be given a user role. If you have enabled SAML-based SSO or user requests, a default user role is assigned to new users. If you add a user manually, you must specify their role.
User roles have the following permissions:
The App Owner role is designed for users that have also been given an app role in relation to one or more apps. Users in the App Owner role have read-only access to the non-financial information about about each app in Trelica, and full access to the apps that they own (i.e. for which they have been given the Owner or IT admin app role).
As you can see, the user has limited menu options available, but the dashboard highlights applications the user owns:
Spend and renewal data is restricted to spend and renewals for applications that the user owns:
The user cannot add extra columns or filters, and cannot see financial fields:
The profile is read-only and no details are shown for licenses, users, and spend transactions:
The default application roles, Owner and IT admin, are both ownership app roles. Users in ownership roles for a particular app can see all information available about the app, including financial data, and make changes to the app status, edit contract and license information, add tasks and edit the integration settings.