Managing Permissions

The purpose of permissions is to allocate access privileges to the various automation components and assign action-specific permissions to various users or groups. This ensures that members of one group cannot view or edit the automation catalog from another and that Nintex RPA managers can only manage their group’s catalog and robots.

Activating the Permission System

To enable the assignment of permissions, you must activate the permission system during the installation of the Nintex Application Server:

  • In the Server Information screen, tick the Activate Permission System checkbox.

    • There are two places in the Nintex Admin Tool application where you can see or edit permissions:

  • In the Wizard Catalog or SensorCatalog section under the Menu Pane (libraries and categories).

  • In the Companies and Users section under the Menu Pane. Here, the permissions are available under the Users tab, per user or group.

  • When setting permissions, note that Deny is stronger than Allow. For example, a user set to Allow might be a member of a group which is set to Deny. In this case, Deny supersedes Allow for that user.

  • By default, once the Activate Permission System has been enabled, the users no longer have any permissions. You need to manually set the permissions to the users.

There is only one type of user or group permission for libraries:

  • Studio/Console Permissions

To set studio/console permissions:

  1. In the Menu Pane, click either the Wizard Catalog or the SensorCatalog.

  2. In the Entities Pane, select the library that contains the user or group whose permissions you want to set.

  3. In the Properties Pane, select the Studio/Console Permissions tab.

  4. Open the Users or Groups folder and select the user or group whose permissions you want to set.

  5. In the Permissions section of the Properties Pane, tick the Allow or Deny checkboxes for the following parameters as required:

    • Edit

    • Add

    • Add Rule

    • Delete Rule

    • Generate Reports

    • Add Read-Data Advanced Commands*

    • Add Write-Data Advanced Commands*

    • Add Execute-Action Advanced Commands*

    • Import**

    • Export**

    6. *These permissions determine the availability of the following advanced commands in the Nintex Studio:

    • Read from registry

    • Get environment variable

    • Read from text file

    • Delete a file

    • Delete file(s)

    • Monitor file changes

    • Get files

    • Delete a folder

    • Monitor folder changes

    • Write to text file

    • Remove from registry

    • Write to registry

    ** You can set the Import and/or Export permission at the Library level to allow a user to import and/or export wizards. Enabling these permissions without any other permission allows the user(s) to ONLY import and/or export wizards, i.e., the subject users cannot edit/create/move catalogs or wizards.

  6. When done, click the Save Changes button.

There are two different types of user or group permissions for the wizard and sensor catalogs:

  • Player/Robot Permissions

  • Studio/Console Permissions

To set player/robot permissions:

  1. In the Menu Pane, click either the Wizard Catalog or the SensorCatalog

  2. In the Entities Pane, select the wizard that contains the user or group whose permissions you want to set.

  3. In the Properties Pane, select the Player/Robot Permissions tab.

  4. Open the Users or Groups folder and select the user or group whose permissions you want to set.

  5. In the Permissions section of the Properties Pane, tick the Allow or Deny checkboxes for the Do It and Guide Me parameters as required.

  6. If required, click the Apply to All Siblings button to apply these permissions to the user’s or group’s siblings.

  7. If required, click the ApplytoAll Subcategories button to apply these permissions to the user’s or group’s subcategories.

  8. When done, click the Save Changes button.

To set studio/console permissions:

  1. In the Menu Pane, click either the Wizard Catalog or the SensorCatalog.

  2. In the Entities Pane, select the wizard that contains the user or group whose permissions you want to set.

  3. In the Properties Pane, select the Studio/Console Permissions tab.

  4. Open the Users or Groups folder and select the user or group whose permissions you want to set.

  5. In the Permissions section of the Properties Pane, tick the Allow or Deny checkboxes for the View, Edit, Add, Delete and Publish parameters as required.

  6. If required, click the Apply toAll Siblings button to apply these permissions to the user’s or group’s siblings.

  7. If required, click the Apply toAll Subcategories button to apply these permissions to the user’s or group’s subcategories.

  8. When done, click the Save Changes button

Although NintexPlayer/Robot and Studio/Console permissions are available in the lower part of the screen under the Users tab, it is recommended that you edit these permissions only via the wizard and sensor catalog permissions.

The General Permissions tab can be used to manage sensors if necessary. However, this functionality is rarely required in most deployments.