Roles vs permissions
Definition
- Role: a named bundle of access (for example “Bursar”).
- Permission: a specific allowed action (for example “record payment”).
Permissions are enforced across the system and control whether buttons, tabs, and modules appear.
Why it matters
Most “missing button” issues are permission-related.
Where you manage access
- Foundation → Identity & Access → Users
- Foundation → Identity & Access → Roles
- Foundation → Identity & Access → Permissions
- Foundation → Identity & Access → Policies (advanced access rules)
Common misunderstandings
- Being a school head does not automatically grant all permissions.
- Two staff members can have the same role but different access if configured differently.
- Some modules are hidden until a school is selected.