Skip to main content

References: Permissions

/AccessCertification/AccessCertificationCampaign/Create

Permission to create objects of type AccessCertificationCampaign

/AccessCertification/AccessCertificationCampaign/Delete

Permission to delete objects of type AccessCertificationCampaign

/AccessCertification/AccessCertificationCampaign/Process

Permission to process AccessCertificationCampaign decisions

/AccessCertification/AccessCertificationCampaign/Query

Permission to query and read objects of type AccessCertificationCampaign

/AccessCertification/AccessCertificationCampaign/Update

Permission to update objects of type AccessCertificationCampaign

/AccessCertification/AccessCertificationCampaignPolicy/Query

Permission to query and read objects of type AccessCertificationCampaignPolicy

/AccessControl/AccessControlEntry/Create

Permission to create objects of type AccessControlEntry

/AccessControl/AccessControlEntry/Delete

Permission to delete objects of type AccessControlEntry

/AccessControl/AccessControlEntry/Query

Permission to query and read objects of type AccessControlEntry

/AccessControl/AccessControlEntry/Update

Permission to update objects of type AccessControlEntry

/AccessControl/AccessControlFilter/Create

Permission to create objects of type AccessControlFilter

/AccessControl/AccessControlFilter/Delete

Permission to delete objects of type AccessControlFilter

/AccessControl/AccessControlFilter/Query

Permission to query and read objects of type AccessControlFilter

/AccessControl/AccessControlFilter/Update

Permission to update objects of type AccessControlFilter

/AccessControl/AccessControlPermission/Query

Permission to query and read objects of type AccessControlPermission

/AccessControl/AccessControlRule/Create

Permission to create objects of type AccessControlRule

/AccessControl/AccessControlRule/Delete

Permission to delete objects of type AccessControlRule

/AccessControl/AccessControlRule/Query

Permission to query and read objects of type AccessControlRule

/AccessControl/AccessControlRule/Update

Permission to update objects of type AccessControlRule

/AccessControl/AssignedProfile/Create

Permission to create objects of type AssignedProfile

/AccessControl/AssignedProfile/Delete

Permission to delete objects of type AssignedProfile

/AccessControl/AssignedProfile/Query

Permission to query and read objects of type AssignedProfile

/AccessControl/AssignedProfile/Update

Permission to update objects of type AssignedProfile

/AccessControl/OpenIdClient/Create

Permission to create objects of type OpenIdClient

/AccessControl/OpenIdClient/Delete

Permission to delete objects of type OpenIdClient

/AccessControl/OpenIdClient/Query

Permission to query and read objects of type OpenIdClient

/AccessControl/OpenIdClient/Update

Permission to update objects of type OpenIdClient

/AccessControl/Profile/Create

Permission to create objects of type Profile

/AccessControl/Profile/Delete

Permission to delete objects of type Profile

/AccessControl/Profile/Query

Permission to query and read objects of type Profile

/AccessControl/Profile/Update

Permission to update objects of type Profile

/AccessControl/ProfileRuleContext/Query

Permission to query and read objects of type ProfileRuleContext

/Connectors/Agent/Create

Permission to create objects of type Agent

/Connectors/Agent/Delete

Permission to delete objects of type Agent

/Connectors/Agent/Query

Permission to query and read objects of type Agent

/Connectors/Agent/Update

Permission to update objects of type Agent

/Connectors/Connection/Create

Permission to create objects of type Connection

/Connectors/Connection/Delete

Permission to delete objects of type Connection

/Connectors/Connection/Query

Permission to query and read objects of type Connection

/Connectors/Connection/Update

Permission to update objects of type Connection

/Connectors/ConnectionColumn/Query

Permission to query and read objects of type ConnectionColumn

/Connectors/ConnectionPackage/Query

Permission to query and read objects of type ConnectionPackage

/Connectors/ConnectionTable/Query

Permission to query and read objects of type ConnectionTable

/Connectors/Connector/Create

Permission to create objects of type Connector

/Connectors/Connector/Delete

Permission to delete objects of type Connector

/Connectors/Connector/Query

Permission to query and read objects of type Connector

/Connectors/Connector/Update

Permission to update objects of type Connector

/Connectors/EntityAssociationMapping/Create

Permission to create objects of type EntityAssociationMapping

/Connectors/EntityAssociationMapping/Delete

Permission to delete objects of type EntityAssociationMapping

/Connectors/EntityAssociationMapping/Query

Permission to query and read objects of type EntityAssociationMapping

/Connectors/EntityAssociationMapping/Update

Permission to update objects of type EntityAssociationMapping

/Connectors/EntityPropertyMapping/Create

Permission to create objects of type EntityPropertyMapping

/Connectors/EntityPropertyMapping/Delete

Permission to delete objects of type EntityPropertyMapping

/Connectors/EntityPropertyMapping/Query

Permission to query and read objects of type EntityPropertyMapping

/Connectors/EntityPropertyMapping/Update

Permission to update objects of type EntityPropertyMapping

/Connectors/EntityTypeMapping/Create

Permission to create objects of type EntityTypeMapping

/Connectors/EntityTypeMapping/Delete

Permission to delete objects of type EntityTypeMapping

/Connectors/EntityTypeMapping/Query

Permission to query and read objects of type EntityTypeMapping

/Connectors/EntityTypeMapping/Update

Permission to update objects of type EntityTypeMapping

/Connectors/EntityTypeMappingByConnectorIdQuery/Query

Permission to query and read objects of type EntityTypeMappingByConnectorIdQuery

/Connectors/PasswordResetContextsByIdsQuery/Query

Permission to query and read objects of type PasswordResetContextsByIdsQuery

/Connectors/ProvisionerResourceTypeMapping/Query

Permission to query and read objects of type ProvisionerResourceTypeMapping

/Connectors/ProvisioningSession

Permission to get provisioning orders from server for a connector.

/Connectors/ResourceTypeMapping/Query

Permission to query and read objects of type ResourceTypeMapping (resource types' fulfill settings in the UI) when launching a resource-type-related job.

/Connectors/SynchronizeSession

Permission to send connector files to the server.

/Custom/AccessCertification/AutoAssigned/{entityType_identifier}

Permission to be automatically assigned to an access certification item corresponding to an access right owned by an object of type entityType_identifier.

/Custom/AccessCertification/ManualAssigned/{entityType_identifier}

Permission to be manually assigned to an access certification item corresponding to an access right owned by an object of type entityType_identifier.

/Custom/ManageAccounts/{entityType_identifier}

Permission to display the Manage Accounts menu for resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/ProvisioningPolicy/BulkPerformManualProvisioning/{entityType_identifier}

Permission to perform bulk validations on the Manual Provisioning page.

/Custom/ProvisioningPolicy/BulkReconciliateResources/{entityType_identifier}

Permission to perform bulk validations on the Resource Reconciliation page.

/Custom/ProvisioningPolicy/BulkReviewProvisioning/{entityType_identifier}

Permission to perform bulk validations on the Provisioning Review page (only for errored orders).

/Custom/ProvisioningPolicy/BulkRoleReconciliation/{entityType_identifier}

Permission to perform bulk validations on the Role Reconciliation page.

/Custom/ProvisioningPolicy/PendingAssignedResourceTypes/{resourceType_identifier}

Permission to query and read all the pending assigned resource types linked to {resourceType_identifier}.

/Custom/ProvisioningPolicy/PerformManualProvisioning/{entityType_identifier}

Permission to perform manual provisioning, access the corresponding screens and be notified accordingly, when {entityType_identifier} is the source entity type.

/Custom/ProvisioningPolicy/ReconciliateResources/{entityType_identifier}

Permission to reconcile resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/ProvisioningPolicy/ReconciliateRoles/{entityType_identifier}

Permission to reconcile role corresponding to an access right owned by an object of type entityType_identifier.

/Custom/ProvisioningPolicy/ReviewProvisioning/{entityType_identifier}

Permission to review provisioning corresponding to an access right owned by an object of type entityType_identifier.

The permission's recipient will receive a notification email.

In order to receive the notifications, a profile must have the full permission path. Having a (great-)parent permission will not enable notifications for all child entities.

For example, the permission /ProvisioningPolicy/PerformManualProvisioning/Directory_User allows a profile to perform manual provisioning with Directory_User as the source entity type, and receive the corresponding notifications. On the contrary, the permission /ProvisioningPolicy/PerformManualProvisioning/ allows a profile to perform manual provisioning for all entity types, but not receive the corresponding notifications.
Each permission can be configured in an access control entry so that the corresponding notification is disabled.

/Custom/ProvisioningPolicy/ReviewRoles/{entityType_identifier}

Permission to review roles corresponding to an access right owned by an object of type entityType_identifier.

The permission's recipient will receive a notification email.

In order to receive the notifications, a profile must have the full permission path. Having a (great-)parent permission will not enable notifications for all child entities.

For example, the permission /ProvisioningPolicy/PerformManualProvisioning/Directory_User allows a profile to perform manual provisioning with Directory_User as the source entity type, and receive the corresponding notifications. On the contrary, the permission /ProvisioningPolicy/PerformManualProvisioning/ allows a profile to perform manual provisioning for all entity types, but not receive the corresponding notifications.
Each permission can be configured in an access control entry so that the corresponding notification is disabled.

/Custom/Reports/{reportQuery_identifier}

Permission to access reports corresponding to the query reportQuery_identifier.

/Custom/ResourceChanges/{connector_identifier}

Permission to query and read any resource changes from the ResourceChanges table.

/Custom/ResourceFileChanges/{connector_identifier}

Permission to query and read any resource file changes from the ResourceFileChanges table.

/Custom/ResourceFiles/{entityType_identifier}/{property_identifier}/View

Permission to query and read any resource files from the ResourceFile table corresponding to the property property_identifier of the entity entityType_identifier, for example the Directory_User photo property. This permission is generated by the ViewAccessControlRules scaffolding.

/Custom/ResourceLinkChanges/{connector_identifier}

Permission to query and read any resource link changes from the ResourceLinkChanges table.

/Custom/Resources/{entityType_identifier}/Create

Permission to create resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/Delete

Permission to delete resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/Query

Permission to query and read resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/Self

Permission to view self resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/SelfOwnedResources

Permission to view self owned resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/SelfTargetResources

Permission to view self target resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/Update

Permission to update resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/View

Permission to view resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/ViewOwnedResources

Permission to view owned resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Resources/{entityType_identifier}/ViewTargetResources

Permission to view target resources corresponding to an access right owned by an object of type entityType_identifier.

/Custom/Workflows/{workflow_identifier}/{activity_identifier}/{activityTemplateState_shortIdentifier}

Permission to access the workflow workflow_identifierat the activty activity_identifier in the state activityTemplateState_shortIdentifier.

/Custom/Workflows/Supervise/{entityType_identifier}

Permission to supervise a workflow corresponding to an access right owned by an object of type entityType_identifier.

/Custom/WorkflowsNotifications/{workflow_identifier}/{activity_identifier}/{activityTemplateState_shortIdentifier}

Permission to be notified on a workflow's specific state. Applies to notifications specifying the recipient's type: Profile.

/EntityTypeMappings

/Jobs/Job/Create

Permission to create objects of type Job

/Jobs/Job/Delete

Permission to delete objects of type Job

/Jobs/Job/Query

Permission to query and read objects of type Job

/Jobs/Job/Update

Permission to update objects of type Job

/Jobs/JobInstance/Create

Permission to create objects of type JobInstance

/Jobs/JobInstance/Delete

Permission to delete objects of type JobInstance

/Jobs/JobInstance/Query

Permission to query and read objects of type JobInstance

/Jobs/JobInstance/Update

Permission to update objects of type JobInstance

/Jobs/JobStep/Create

Permission to create objects of type JobStep

/Jobs/JobStep/Delete

Permission to delete objects of type JobStep

/Jobs/JobStep/Query

Permission to query and read objects of type JobStep

/Jobs/JobStep/Update

Permission to update objects of type JobStep

/Jobs/RunJob/GetLog

Read permission for JobLog

/Jobs/RunJob/Launch/Aborted

Permission to send notification for job launched which ends in state Aborted

/Jobs/RunJob/Launch/Blocked

Permission to send notification for job launched which ends in state Blocked

/Jobs/RunJob/Launch/Completed

Permission to send notification for job launched which ends in state Completed

/Jobs/RunJob/Launch/Errored

Permission to send notification for job launched which ends in state Errored

/Jobs/RunJob/Launch/Warning

Permission to send notification for job launched which ends in state Warning

/Jobs/RunJob/Repair/Aborted

Permission to send notification for job relaunched which ends in state Aborted

/Jobs/RunJob/Repair/Blocked

Permission to send notification for job relaunched which ends in state Blocked

/Jobs/RunJob/Repair/Completed

Permission to send notification for job relaunched which ends in state Completed

/Jobs/RunJob/Repair/Errored

Permission to send notification for job relaunched which ends in state Errored

/Jobs/RunJob/Repair/Warning

Permission to send notification for job relaunched which ends in state Warning

/Jobs/Task/Create

Permission to create objects of type Task

/Jobs/Task/Delete

Permission to delete objects of type Task

/Jobs/Task/Query

Permission to query and read objects of type Task

/Jobs/Task/Update

Permission to update objects of type Task

/Jobs/TaskDependOnTask/Create

Permission to create objects of type TaskDependOnTask

/Jobs/TaskDependOnTask/Delete

Permission to delete objects of type TaskDependOnTask

/Jobs/TaskDependOnTask/Query

Permission to query and read objects of type TaskDependOnTask

/Jobs/TaskDependOnTask/Update

Permission to update objects of type TaskDependOnTask

/Jobs/TaskDimension/Create

Permission to create objects of type TaskDimension

/Jobs/TaskDimension/Delete

Permission to delete objects of type TaskDimension

/Jobs/TaskDimension/Query

Permission to query and read objects of type TaskDimension

/Jobs/TaskDimension/Update

Permission to update objects of type TaskDimension

/Jobs/TaskEntityType/Create

Permission to create objects of type TaskEntityType

/Jobs/TaskEntityType/Delete

Permission to delete objects of type TaskEntityType

/Jobs/TaskEntityType/Query

Permission to query and read objects of type TaskEntityType

/Jobs/TaskEntityType/Update

Permission to update objects of type TaskEntityType

/Jobs/TaskIdByIdentifiersQuery/Query

Permission to query and read objects of type TaskIdByIdentifiersQuery

/Jobs/TaskInstance/Create

Permission to create objects of type TaskInstance

/Jobs/TaskInstance/Delete

Permission to delete objects of type TaskInstance

/Jobs/TaskInstance/Query

Permission to query and read objects of type TaskInstance

/Jobs/TaskInstance/Update

Permission to update objects of type TaskInstance

/Jobs/TaskResourceType/Create

Permission to create objects of type TaskResourceType

/Jobs/TaskResourceType/Delete

Permission to delete objects of type TaskResourceType

/Jobs/TaskResourceType/Query

Permission to query and read objects of type TaskResourceType

/Jobs/TaskResourceType/Update

Permission to update objects of type TaskResourceType

/Metadata/Binding/Create

Permission to create objects of type Binding

/Metadata/Binding/Delete

Permission to delete objects of type Binding

/Metadata/Binding/Query

Permission to query and read objects of type Binding

/Metadata/Binding/Update

Permission to update objects of type Binding

/Metadata/BindingItem/Query

Permission to query and read objects of type BindingItem

/Metadata/Dimension/Create

Permission to create objects of type Dimension

/Metadata/Dimension/Delete

Permission to delete objects of type Dimension

/Metadata/Dimension/Query

Permission to query and read objects of type Dimension

/Metadata/Dimension/Update

Permission to update objects of type Dimension

/Metadata/EntityAssociation/Create

Permission to create objects of type EntityAssociation

/Metadata/EntityAssociation/Delete

Permission to delete objects of type EntityAssociation

/Metadata/EntityAssociation/Query

Permission to query and read objects of type EntityAssociation

/Metadata/EntityAssociation/Update

Permission to update objects of type EntityAssociation

/Metadata/EntityProperty/Create

Permission to create objects of type EntityProperty

/Metadata/EntityProperty/Delete

Permission to delete objects of type EntityProperty

/Metadata/EntityProperty/Query

Permission to query and read objects of type EntityProperty

/Metadata/EntityProperty/Update

Permission to update objects of type EntityProperty

/Metadata/EntityType/Create

Permission to create objects of type EntityType

/Metadata/EntityType/Delete

Permission to delete objects of type EntityType

/Metadata/EntityType/Query

Permission to query and read objects of type EntityType

/Metadata/EntityType/Update

Permission to update objects of type EntityType

/Metadata/Language/Query

Permission to query and read objects of type Language

/Metadata/Setting/Create

Permission to create objects of type Setting

/Metadata/Setting/Delete

Permission to delete objects of type Setting

/Metadata/Setting/Query

Permission to query and read objects of type Setting

/Metadata/Setting/Update

Permission to update objects of type Setting

/Monitoring

Permission to download server logs from the User Interface (from the Monitoring screen).

/ProvisioningPolicy/AssignedCompositeRole/Comment

Permission to comment objects of type AssignedCompositeRole

/ProvisioningPolicy/AssignedCompositeRole/Create

Permission to create objects of type AssignedCompositeRole

/ProvisioningPolicy/AssignedCompositeRole/Delete

Permission to delete objects of type AssignedCompositeRole

/ProvisioningPolicy/AssignedCompositeRole/Query

Permission to query and read objects of type AssignedCompositeRole

/ProvisioningPolicy/AssignedCompositeRole/Update

Permission to update objects of type AssignedCompositeRole

/ProvisioningPolicy/AssignedResourceBinary/Create

Permission to create objects of type AssignedResourceBinary

/ProvisioningPolicy/AssignedResourceBinary/Delete

Permission to delete objects of type AssignedResourceBinary

/ProvisioningPolicy/AssignedResourceBinary/Query

Permission to query and read objects of type AssignedResourceBinary

/ProvisioningPolicy/AssignedResourceBinary/Update

Permission to update objects of type AssignedResourceBinary

/ProvisioningPolicy/AssignedResourceNavigation/Create

Permission to create objects of type AssignedResourceNavigation

/ProvisioningPolicy/AssignedResourceNavigation/Delete

Permission to delete objects of type AssignedResourceNavigation

/ProvisioningPolicy/AssignedResourceNavigation/Query

Permission to query and read objects of type AssignedResourceNavigation

/ProvisioningPolicy/AssignedResourceNavigation/Update

Permission to update objects of type AssignedResourceNavigation

/ProvisioningPolicy/AssignedResourceScalar/Create

Permission to create objects of type AssignedResourceScalar

/ProvisioningPolicy/AssignedResourceScalar/Delete

Permission to delete objects of type AssignedResourceScalar

/ProvisioningPolicy/AssignedResourceScalar/Query

Permission to query and read objects of type AssignedResourceScalar

/ProvisioningPolicy/AssignedResourceScalar/Update

Permission to update objects of type AssignedResourceScalar

/ProvisioningPolicy/AssignedResourceType/Comment

Permission to comment objects of type AssignedResourceType

/ProvisioningPolicy/AssignedResourceType/Create

Permission to create objects of type AssignedResourceType

/ProvisioningPolicy/AssignedResourceType/Delete

Permission to delete objects of type AssignedResourceType

/ProvisioningPolicy/AssignedResourceType/ManualProvisioningReview

Permission to review manual provisioning for object of type AssignedResourceType

/ProvisioningPolicy/AssignedResourceType/Query

Permission to query and read objects of type AssignedResourceType

/ProvisioningPolicy/AssignedResourceType/Update

Permission to update objects of type AssignedResourceType

/ProvisioningPolicy/AssignedSingleRole/Comment

Permission to comment objects of type AssignedSingleRole

/ProvisioningPolicy/AssignedSingleRole/Create

Permission to create objects of type AssignedSingleRole

/ProvisioningPolicy/AssignedSingleRole/Delete

Permission to delete objects of type AssignedSingleRole

/ProvisioningPolicy/AssignedSingleRole/Query

Permission to query and read objects of type AssignedSingleRole

/ProvisioningPolicy/AssignedSingleRole/Update

Permission to update objects of type AssignedSingleRole

/ProvisioningPolicy/AutomationRule/Create

Permission to create objects of type AutomationRule

/ProvisioningPolicy/AutomationRule/CreateSimulation

Permission to create objects of type AutomationRule in simulation

/ProvisioningPolicy/AutomationRule/Delete

Permission to delete objects of type AutomationRule

/ProvisioningPolicy/AutomationRule/DeleteSimulation

Permission to delete objects of type AutomationRule in simulation

/ProvisioningPolicy/AutomationRule/Query

Permission to query and read objects of type AutomationRule

/ProvisioningPolicy/AutomationRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type AutomationRule

/ProvisioningPolicy/AutomationRule/Simulation

Permission to query and read objects of type AutomationRule in simulation

/ProvisioningPolicy/AutomationRule/Update

Permission to update objects of type AutomationRule

/ProvisioningPolicy/AutomationRule/UpdateSimulation

Permission to update objects of type AutomationRule in simulation

/ProvisioningPolicy/Category/Create

Permission to create objects of type Category

/ProvisioningPolicy/Category/Delete

Permission to delete objects of type Category

/ProvisioningPolicy/Category/Query

Permission to query and read objects of type Category

/ProvisioningPolicy/Category/Update

Permission to update objects of type Category

/ProvisioningPolicy/CompositeRole/Create

Permission to create objects of type CompositeRole

/ProvisioningPolicy/CompositeRole/CreateSimulation

Permission to create objects of type CompositeRole in simulation

/ProvisioningPolicy/CompositeRole/Delete

Permission to delete objects of type CompositeRole

/ProvisioningPolicy/CompositeRole/DeleteSimulation

Permission to delete objects of type CompositeRole in simulation

/ProvisioningPolicy/CompositeRole/Query

Permission to query and read objects of type CompositeRole

/ProvisioningPolicy/CompositeRole/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type CompositeRole

/ProvisioningPolicy/CompositeRole/Simulation

Permission to query and read objects of type CompositeRole in simulation

/ProvisioningPolicy/CompositeRole/Update

Permission to update objects of type CompositeRole

/ProvisioningPolicy/CompositeRole/UpdateSimulation

Permission to update objects of type CompositeRole in simulation

/ProvisioningPolicy/CompositeRoleRule/Create

Permission to create objects of type CompositeRoleRule

/ProvisioningPolicy/CompositeRoleRule/CreateSimulation

Permission to create objects of type CompositeRoleRule in simulation

/ProvisioningPolicy/CompositeRoleRule/Delete

Permission to delete objects of type CompositeRoleRule

/ProvisioningPolicy/CompositeRoleRule/DeleteSimulation

Permission to delete objects of type CompositeRoleRule in simulation

/ProvisioningPolicy/CompositeRoleRule/Query

Permission to query and read objects of type CompositeRoleRule

/ProvisioningPolicy/CompositeRoleRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type CompositeRoleRule

/ProvisioningPolicy/CompositeRoleRule/Simulation

Permission to query and read objects of type CompositeRoleRule in simulation

/ProvisioningPolicy/CompositeRoleRule/Update

Permission to update objects of type CompositeRoleRule

/ProvisioningPolicy/CompositeRoleRule/UpdateSimulation

Permission to update objects of type CompositeRoleRule in simulation

/ProvisioningPolicy/ContextRule/Create

Permission to create objects of type ContextRule

/ProvisioningPolicy/ContextRule/CreateSimulation

Permission to create objects of type ContextRule in simulation

/ProvisioningPolicy/ContextRule/Delete

Permission to delete objects of type ContextRule

/ProvisioningPolicy/ContextRule/DeleteSimulation

Permission to delete objects of type ContextRule in simulation

/ProvisioningPolicy/ContextRule/Query

Permission to query and read objects of type ContextRule

/ProvisioningPolicy/ContextRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ContextRule

/ProvisioningPolicy/ContextRule/Simulation

Permission to query and read objects of type ContextRule in simulation

/ProvisioningPolicy/ContextRule/Update

Permission to update objects of type ContextRule

/ProvisioningPolicy/ContextRule/UpdateSimulation

Permission to update objects of type ContextRule in simulation

/ProvisioningPolicy/IdentifiedRisk/Query

Permission to query and read objects of type IdentifiedRisk

/ProvisioningPolicy/MiningRule/Create

Permission to create objects of type MiningRule

/ProvisioningPolicy/MiningRule/Delete

Permission to delete objects of type MiningRule

/ProvisioningPolicy/MiningRule/Query

Permission to query and read objects of type MiningRule

/ProvisioningPolicy/MiningRule/Update

Permission to update objects of type MiningRule

/ProvisioningPolicy/Policy/Create

Permission to create objects of type Policy

/ProvisioningPolicy/Policy/CreateSimulation

Permission to create objects of type Policy in simulation

/ProvisioningPolicy/Policy/Delete

Permission to delete objects of type Policy

/ProvisioningPolicy/Policy/DeleteSimulation

Permission to delete objects of type Policy in simulation

/ProvisioningPolicy/Policy/Query

Permission to query and read objects of type Policy

/ProvisioningPolicy/Policy/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type Policy

/ProvisioningPolicy/Policy/Simulation

Permission to query and read objects of type Policy in simulation

/ProvisioningPolicy/Policy/Update

Permission to update objects of type Policy

/ProvisioningPolicy/Policy/UpdateSimulation

Permission to update objects of type Policy in simulation

/ProvisioningPolicy/PolicySimulation/Create

Permission to create objects of type PolicySimulation

/ProvisioningPolicy/PolicySimulation/Delete

Permission to delete objects of type PolicySimulation

/ProvisioningPolicy/PolicySimulation/Query

Permission to query and read objects of type PolicySimulation

/ProvisioningPolicy/PolicySimulation/Start

Permission to start a simulation of a policy

/ProvisioningPolicy/PolicySimulation/Update

Permission to update objects of type PolicySimulation

/ProvisioningPolicy/PredefinedFunctionQuery/Query

Permission to query and read objects of type PredefinedFunctionQuery

/ProvisioningPolicy/Provisioning/Start

/ProvisioningPolicy/RedundantAssignment/Query

Permission to access the Redundant Assignment page.

/ProvisioningPolicy/RedundantAssignment/Start

Permission to compute redundant assignments and remove them.

/ProvisioningPolicy/ResourceBinaryRule/Create

Permission to create objects of type ResourceBinaryRule

/ProvisioningPolicy/ResourceBinaryRule/CreateSimulation

Permission to create objects of type ResourceBinaryRule in simulation

/ProvisioningPolicy/ResourceBinaryRule/Delete

Permission to delete objects of type ResourceBinaryRule

/ProvisioningPolicy/ResourceBinaryRule/DeleteSimulation

Permission to delete objects of type ResourceBinaryRule in simulation

/ProvisioningPolicy/ResourceBinaryRule/Query

Permission to query and read objects of type ResourceBinaryRule

/ProvisioningPolicy/ResourceBinaryRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ResourceBinaryRule

/ProvisioningPolicy/ResourceBinaryRule/Simulation

Permission to query and read objects of type ResourceBinaryRule in simulation

/ProvisioningPolicy/ResourceBinaryRule/Update

Permission to update objects of type ResourceBinaryRule

/ProvisioningPolicy/ResourceBinaryRule/UpdateSimulation

Permission to update objects of type ResourceBinaryRule in simulation

/ProvisioningPolicy/ResourceClassificationRule/Create

Permission to create objects of type ResourceClassificationRule

/ProvisioningPolicy/ResourceClassificationRule/CreateSimulation

Permission to create objects of type ResourceClassificationRule in simulation

/ProvisioningPolicy/ResourceClassificationRule/Delete

Permission to delete objects of type ResourceClassificationRule

/ProvisioningPolicy/ResourceClassificationRule/DeleteSimulation

Permission to delete objects of type ResourceClassificationRule in simulation

/ProvisioningPolicy/ResourceClassificationRule/Query

Permission to query and read objects of type ResourceClassificationRule

/ProvisioningPolicy/ResourceClassificationRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ResourceClassificationRule

/ProvisioningPolicy/ResourceClassificationRule/Simulation

Permission to query and read objects of type ResourceClassificationRule in simulation

/ProvisioningPolicy/ResourceClassificationRule/Update

Permission to update objects of type ResourceClassificationRule

/ProvisioningPolicy/ResourceClassificationRule/UpdateSimulation

Permission to update objects of type ResourceClassificationRule in simulation

/ProvisioningPolicy/ResourceCorrelationRule/Create

Permission to create objects of type ResourceCorrelationRule

/ProvisioningPolicy/ResourceCorrelationRule/CreateSimulation

Permission to create objects of type ResourceCorrelationRule in simulation

/ProvisioningPolicy/ResourceCorrelationRule/Delete

Permission to delete objects of type ResourceCorrelationRule

/ProvisioningPolicy/ResourceCorrelationRule/DeleteSimulation

Permission to delete objects of type ResourceCorrelationRule in simulation

/ProvisioningPolicy/ResourceCorrelationRule/Query

Permission to query and read objects of type ResourceCorrelationRule

/ProvisioningPolicy/ResourceCorrelationRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ResourceCorrelationRule

/ProvisioningPolicy/ResourceCorrelationRule/Simulation

Permission to query and read objects of type ResourceCorrelationRule in simulation

/ProvisioningPolicy/ResourceCorrelationRule/Update

Permission to update objects of type ResourceCorrelationRule

/ProvisioningPolicy/ResourceCorrelationRule/UpdateSimulation

Permission to update objects of type ResourceCorrelationRule in simulation

/ProvisioningPolicy/ResourceHistory/Query

Permission to query and read objects of type ResourceHistory

/ProvisioningPolicy/ResourceManageableAccounts/Query

Permission to query and read objects of type ResourceManageableAccounts

/ProvisioningPolicy/ResourceNavigationRule/Create

Permission to create objects of type ResourceNavigationRule

/ProvisioningPolicy/ResourceNavigationRule/CreateSimulation

Permission to create objects of type ResourceNavigationRule in simulation

/ProvisioningPolicy/ResourceNavigationRule/Delete

Permission to delete objects of type ResourceNavigationRule

/ProvisioningPolicy/ResourceNavigationRule/DeleteSimulation

Permission to delete objects of type ResourceNavigationRule in simulation

/ProvisioningPolicy/ResourceNavigationRule/Query

Permission to query and read objects of type ResourceNavigationRule

/ProvisioningPolicy/ResourceNavigationRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ResourceNavigationRule

/ProvisioningPolicy/ResourceNavigationRule/Simulation

Permission to query and read objects of type ResourceNavigationRule in simulation

/ProvisioningPolicy/ResourceNavigationRule/Update

Permission to update objects of type ResourceNavigationRule

/ProvisioningPolicy/ResourceNavigationRule/UpdateSimulation

Permission to update objects of type ResourceNavigationRule in simulation

/ProvisioningPolicy/ResourceQueryRule/Create

Permission to create objects of type ResourceQueryRule

/ProvisioningPolicy/ResourceQueryRule/CreateSimulation

Permission to create objects of type ResourceQueryRule in simulation

/ProvisioningPolicy/ResourceQueryRule/Delete

Permission to delete objects of type ResourceQueryRule

/ProvisioningPolicy/ResourceQueryRule/DeleteSimulation

Permission to delete objects of type ResourceQueryRule in simulation

/ProvisioningPolicy/ResourceQueryRule/Query

Permission to query and read objects of type ResourceQueryRule

/ProvisioningPolicy/ResourceQueryRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ResourceQueryRule

/ProvisioningPolicy/ResourceQueryRule/Simulation

Permission to query and read objects of type ResourceQueryRule in simulation

/ProvisioningPolicy/ResourceQueryRule/Update

Permission to update objects of type ResourceQueryRule

/ProvisioningPolicy/ResourceQueryRule/UpdateSimulation

Permission to update objects of type ResourceQueryRule in simulation

/ProvisioningPolicy/ResourceScalarRule/Create

Permission to create objects of type ResourceScalarRule

/ProvisioningPolicy/ResourceScalarRule/CreateSimulation

Permission to create objects of type ResourceScalarRule in simulation

/ProvisioningPolicy/ResourceScalarRule/Delete

Permission to delete objects of type ResourceScalarRule

/ProvisioningPolicy/ResourceScalarRule/DeleteSimulation

Permission to delete objects of type ResourceScalarRule in simulation

/ProvisioningPolicy/ResourceScalarRule/Query

Permission to query and read objects of type ResourceScalarRule

/ProvisioningPolicy/ResourceScalarRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ResourceScalarRule

/ProvisioningPolicy/ResourceScalarRule/Simulation

Permission to query and read objects of type ResourceScalarRule in simulation

/ProvisioningPolicy/ResourceScalarRule/Update

Permission to update objects of type ResourceScalarRule

/ProvisioningPolicy/ResourceScalarRule/UpdateSimulation

Permission to update objects of type ResourceScalarRule in simulation

/ProvisioningPolicy/ResourceType/Create

Permission to create objects of type ResourceType

/ProvisioningPolicy/ResourceType/CreateSimulation

Permission to create objects of type ResourceType in simulation

/ProvisioningPolicy/ResourceType/Delete

Permission to delete objects of type ResourceType

/ProvisioningPolicy/ResourceType/DeleteSimulation

Permission to delete objects of type ResourceType in simulation

/ProvisioningPolicy/ResourceType/Query

Permission to query and read objects of type ResourceType

/ProvisioningPolicy/ResourceType/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ResourceType

/ProvisioningPolicy/ResourceType/Simulation

Permission to query and read objects of type ResourceType in simulation

/ProvisioningPolicy/ResourceType/Update

Permission to update objects of type ResourceType

/ProvisioningPolicy/ResourceType/UpdateSimulation

Permission to update objects of type ResourceType in simulation

/ProvisioningPolicy/ResourceTypeRule/Create

Permission to create objects of type ResourceTypeRule

/ProvisioningPolicy/ResourceTypeRule/CreateSimulation

Permission to create objects of type ResourceTypeRule in simulation

/ProvisioningPolicy/ResourceTypeRule/Delete

Permission to delete objects of type ResourceTypeRule

/ProvisioningPolicy/ResourceTypeRule/DeleteSimulation

Permission to delete objects of type ResourceTypeRule in simulation

/ProvisioningPolicy/ResourceTypeRule/Query

Permission to query and read objects of type ResourceTypeRule

/ProvisioningPolicy/ResourceTypeRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type ResourceTypeRule

/ProvisioningPolicy/ResourceTypeRule/Simulation

Permission to query and read objects of type ResourceTypeRule in simulation

/ProvisioningPolicy/ResourceTypeRule/Update

Permission to update objects of type ResourceTypeRule

/ProvisioningPolicy/ResourceTypeRule/UpdateSimulation

Permission to update objects of type ResourceTypeRule in simulation

/ProvisioningPolicy/Risk/Create

Permission to create objects of type Risk

/ProvisioningPolicy/Risk/Delete

Permission to delete objects of type Risk

/ProvisioningPolicy/Risk/OverrideApproval

Permission to transform an approval risk into a warning risk

/ProvisioningPolicy/Risk/OverrideBlocking

Permission to transform a blocking risk into an approval risk

/ProvisioningPolicy/Risk/Query

Permission to query and read objects of type Risk

/ProvisioningPolicy/Risk/Update

Permission to update objects of type Risk

/ProvisioningPolicy/RoleMapping/Create

Permission to create objects of type RoleMapping

/ProvisioningPolicy/RoleMapping/Delete

Permission to delete objects of type RoleMapping

/ProvisioningPolicy/RoleMapping/Query

Permission to query and read objects of type RoleMapping

/ProvisioningPolicy/RoleMapping/Update

Permission to update objects of type RoleMapping

/ProvisioningPolicy/SingleRole/Create

Permission to create objects of type SingleRole

/ProvisioningPolicy/SingleRole/CreateSimulation

Permission to create objects of type SingleRole in simulation

/ProvisioningPolicy/SingleRole/Delete

Permission to delete objects of type SingleRole

/ProvisioningPolicy/SingleRole/DeleteSimulation

Permission to delete objects of type SingleRole in simulation

/ProvisioningPolicy/SingleRole/Query

Permission to query and read objects of type SingleRole

/ProvisioningPolicy/SingleRole/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type SingleRole

/ProvisioningPolicy/SingleRole/Simulation

Permission to query and read objects of type SingleRole in simulation

/ProvisioningPolicy/SingleRole/Update

Permission to update objects of type SingleRole

/ProvisioningPolicy/SingleRole/UpdateSimulation

Permission to update objects of type SingleRole in simulation

/ProvisioningPolicy/SingleRoleRule/Create

Permission to create objects of type SingleRoleRule

/ProvisioningPolicy/SingleRoleRule/CreateSimulation

Permission to create objects of type SingleRoleRule in simulation

/ProvisioningPolicy/SingleRoleRule/Delete

Permission to delete objects of type SingleRoleRule

/ProvisioningPolicy/SingleRoleRule/DeleteSimulation

Permission to delete objects of type SingleRoleRule in simulation

/ProvisioningPolicy/SingleRoleRule/Query

Permission to query and read objects of type SingleRoleRule

/ProvisioningPolicy/SingleRoleRule/RevertSimulation

Permission to revert a deletion or update in simulation on objects of type SingleRoleRule

/ProvisioningPolicy/SingleRoleRule/Simulation

Permission to query and read objects of type SingleRoleRule in simulation

/ProvisioningPolicy/SingleRoleRule/Update

Permission to update objects of type SingleRoleRule

/ProvisioningPolicy/SingleRoleRule/UpdateSimulation

Permission to update objects of type SingleRoleRule in simulation

/Report/GenerateReportFileFromQuery/Query

Permission to query and read objects of type GenerateReportFileFromQuery

/Report/GenerateReportFileFromReportQuery/Query

Permission to query and read objects of type GenerateReportFileFromReportQuery

/Report/ReportQuery/Create

Permission to create objects of type ReportQuery

/Report/ReportQuery/Delete

Permission to delete objects of type ReportQuery

/Report/ReportQuery/Query

Permission to query and read objects of type ReportQuery

/Report/ReportQuery/Update

Permission to update objects of type ReportQuery

/Resources/Incremental/Query

Permission to query and read objects of type Resource and Resource Link incrementally changed

/Resources/Resource/Create

Permission to create objects of type Resource

/Resources/Resource/Delete

Permission to delete objects of type Resource

/Resources/Resource/Query

Permission to query and read objects of type Resource

/Resources/Resource/Update

Permission to update objects of type Resource

/Settings/Manage

/Universes/EntityInstance/Query

Permission to query and read objects of type EntityInstance

/Universes/Universe/Query

Permission to query and read objects of type Universe

/Universes/UniverseData/Query

Permission to query and read objects of type UniverseData

/UserInterface/ActivityFormNameByWorkflowInstanceIdQuery/Query

Permission to query and read objects of type ActivityFormNameByWorkflowInstanceIdQuery

/UserInterface/ApplicationInformationsQuery/Query

Permission to query and read objects of type ApplicationInformationsQuery

/UserInterface/ConnectorResourceType/Create

Permission to create objects of type ConnectorResourceType

/UserInterface/ConnectorResourceType/Delete

Permission to delete objects of type ConnectorResourceType

/UserInterface/ConnectorResourceType/Update

Permission to update objects of type ConnectorResourceType

/UserInterface/DisplayEntityAssociation/Create

Permission to create objects of type DisplayEntityAssociation

/UserInterface/DisplayEntityAssociation/Delete

Permission to delete objects of type DisplayEntityAssociation

/UserInterface/DisplayEntityAssociation/Query

Permission to query and read objects of type DisplayEntityAssociation

/UserInterface/DisplayEntityAssociation/Update

Permission to update objects of type DisplayEntityAssociation

/UserInterface/DisplayEntityProperty/Create

Permission to create objects of type DisplayEntityProperty

/UserInterface/DisplayEntityProperty/Delete

Permission to delete objects of type DisplayEntityProperty

/UserInterface/DisplayEntityProperty/Query

Permission to query and read objects of type DisplayEntityProperty

/UserInterface/DisplayEntityProperty/Update

Permission to update objects of type DisplayEntityProperty

/UserInterface/DisplayEntityType/Create

Permission to create objects of type DisplayEntityType

/UserInterface/DisplayEntityType/Delete

Permission to delete objects of type DisplayEntityType

/UserInterface/DisplayEntityType/Query

Permission to query and read objects of type DisplayEntityType

/UserInterface/DisplayEntityType/Update

Permission to update objects of type DisplayEntityType

/UserInterface/DisplayPropertyGroup/Create

Permission to create objects of type DisplayPropertyGroup

/UserInterface/DisplayPropertyGroup/Delete

Permission to delete objects of type DisplayPropertyGroup

/UserInterface/DisplayPropertyGroup/Query

Permission to query and read objects of type DisplayPropertyGroup

/UserInterface/DisplayPropertyGroup/Update

Permission to update objects of type DisplayPropertyGroup

/UserInterface/DisplayTable/Create

Permission to create objects of type DisplayTable

/UserInterface/DisplayTable/Delete

Permission to delete objects of type DisplayTable

/UserInterface/DisplayTable/Query

Permission to query and read objects of type DisplayTable

/UserInterface/DisplayTable/Update

Permission to update objects of type DisplayTable

/UserInterface/DisplayTableColumn/Create

Permission to create objects of type DisplayTableColumn

/UserInterface/DisplayTableColumn/Delete

Permission to delete objects of type DisplayTableColumn

/UserInterface/DisplayTableColumn/Query

Permission to query and read objects of type DisplayTableColumn

/UserInterface/DisplayTableColumn/Update

Permission to update objects of type DisplayTableColumn

/UserInterface/DisplayTableDesignElement/Query

Permission to query and read objects of type DisplayTableDesignElement

/UserInterface/EntityTypeMappingByUiContextQuery/Query

Permission to query and read objects of type EntityTypeMappingByUiContextQuery

/UserInterface/Form/Create

Permission to create objects of type Form

/UserInterface/Form/Delete

Permission to delete objects of type Form

/UserInterface/Form/Query

Permission to query and read objects of type Form

/UserInterface/Form/Update

Permission to update objects of type Form

/UserInterface/FormControl/Create

Permission to create objects of type FormControl

/UserInterface/FormControl/Delete

Permission to delete objects of type FormControl

/UserInterface/FormControl/Query

Permission to query and read objects of type FormControl

/UserInterface/FormControl/Update

Permission to update objects of type FormControl

/UserInterface/HierarchyDataByEntityTypeIdQuery/Query

Permission to query and read objects of type HierarchyDataByEntityTypeIdQuery

/UserInterface/Indicator/Create

Permission to create objects of type Indicator

/UserInterface/Indicator/Delete

Permission to delete objects of type Indicator

/UserInterface/Indicator/Query

Permission to query and read objects of type Indicator

/UserInterface/Indicator/Update

Permission to update objects of type Indicator

/UserInterface/IndicatorItem/Create

Permission to create objects of type IndicatorItem

/UserInterface/IndicatorItem/Delete

Permission to delete objects of type IndicatorItem

/UserInterface/IndicatorItem/Query

Permission to query and read objects of type IndicatorItem

/UserInterface/IndicatorItem/Update

Permission to update objects of type IndicatorItem

/UserInterface/PersonasByFilterQuery/Query

Permission to query and read objects of type PersonasByFilterQuery

/UserInterface/Reload

Permission to reset the container, in order to update the permissions and the displayed configuration.

/UserInterface/ResourceReadForm/Query

Permission to query and read objects of type ResourceReadForm

/UserInterface/ResourceReadFormActions/Query

Permission to query and read objects of type ResourceReadFormActions

/UserInterface/ResourceSearchForm/Query

Permission to query and read objects of type ResourceSearchForm

/UserInterface/ResourceSelfForm/Query

Permission to query and read objects of type ResourceSelfForm

/UserInterface/SearchBar/Create

Permission to create objects of type SearchBar

/UserInterface/SearchBar/Delete

Permission to delete objects of type SearchBar

/UserInterface/SearchBar/Query

Permission to query and read objects of type SearchBar

/UserInterface/SearchBar/Update

Permission to update objects of type SearchBar

/UserInterface/SearchBarCriterion/Create

Permission to create objects of type SearchBarCriterion

/UserInterface/SearchBarCriterion/Delete

Permission to delete objects of type SearchBarCriterion

/UserInterface/SearchBarCriterion/Query

Permission to query and read objects of type SearchBarCriterion

/UserInterface/SearchBarCriterion/Update

Permission to update objects of type SearchBarCriterion

/UserInterface/Tile/Create

Permission to create objects of type Tile

/UserInterface/Tile/Delete

Permission to delete objects of type Tile

/UserInterface/Tile/Query

Permission to query and read objects of type Tile

/UserInterface/Tile/Update

Permission to update objects of type Tile

/UserInterface/TileDesignElement/Query

Permission to query and read objects of type TileDesignElement

/UserInterface/TileItem/Create

Permission to create objects of type TileItem

/UserInterface/TileItem/Delete

Permission to delete objects of type TileItem

/UserInterface/TileItem/Query

Permission to query and read objects of type TileItem

/UserInterface/TileItem/Update

Permission to update objects of type TileItem

/UserInterface/UserByIdentityQuery/Query

Permission to query and read objects of type UserByIdentityQuery

/UserInterface/WorkflowFormByNameQuery/Query

Permission to query and read objects of type WorkflowFormByNameQuery

/UserInterface/WorkflowFormByWorkflowIdQuery/Query

Permission to query and read objects of type WorkflowFormByWorkflowIdQuery

/Workflows/Activity/Create

Permission to create objects of type Activity

/Workflows/Activity/Delete

Permission to delete objects of type Activity

/Workflows/Activity/Query

Permission to query and read objects of type Activity

/Workflows/Activity/Update

Permission to update objects of type Activity

/Workflows/ActivityInstance/Query

Permission to query and read objects of type ActivityInstance

/Workflows/ActivityInstanceAspectsQuery/Query

Permission to query and read objects of type ActivityInstanceAspectsQuery

/Workflows/ActivityTemplate/Query

Permission to query and read objects of type ActivityTemplate

/Workflows/ActivityTemplateState/Query

Permission to query and read objects of type ActivityTemplateState

/Workflows/ActivityTemplateTransition/Query

Permission to query and read objects of type ActivityTemplateTransition

/Workflows/HistorizedResourceFileByWorkflowInstanceIdQuery/Query

Permission to query and read objects of type HistorizedResourceFileByWorkflowInstanceIdQuery

/Workflows/HomonymEntityLink/Create

Permission to create objects of type HomonymEntityLink

/Workflows/HomonymEntityLink/Delete

Permission to delete objects of type HomonymEntityLink

/Workflows/HomonymEntityLink/Query

Permission to query and read objects of type HomonymEntityLink

/Workflows/HomonymEntityLink/Update

Permission to update objects of type HomonymEntityLink

/Workflows/UserActivityInstance/AssignedTo

Permission to update the actor on object of type UserActivityInstance

/Workflows/UserActivityInstance/ExpectedDate

Permission to update expected date on object of type UserActivityInstance

/Workflows/UserActivityInstance/Query

Permission to query and read objects of type UserActivityInstance

/Workflows/UserActivityInstanceCountQuery/Query

Permission to query and read objects of type UserActivityInstanceCountQuery

/Workflows/Workflow/Create

Permission to create objects of type Workflow

/Workflows/Workflow/Delete

Permission to delete objects of type Workflow

/Workflows/Workflow/Query

Permission to query and read objects of type Workflow

/Workflows/Workflow/Update

Permission to update objects of type Workflow

/Workflows/WorkflowInstance/Query

Permission to query and read objects of type WorkflowInstance

/Workflows/WorkflowInstance/Resume

/Workflows/WorkflowInstance/Start

/Workflows/WorkflowInstance/Supervise

Permission to supervise objects of type WorkflowInstance

/Workflows/WorkflowInstanceData/Query

Permission to query and read objects of type WorkflowInstanceData