What is the difference between a role and a permission?
A description of system defined user roles, custom roles you can create for your account, and a list of the available permissions that are associated with roles.
Note: The permissions listed in this article, also apply if you Contact Support from any article on this site. Customer Support is unable to provide troubleshooting assistance unless the user has the applicable roles/permissions for the specific concern.
GoTo Admin
If you're an admin who signs in at https://admin.goto.com, these steps are for you.
Roles
These are labels that you assign to a user to give them a pre-determined group of permissions. Here are the system defined roles:
- Super admin: User has all system permissions.
- Admin: User has all system permissions except the ability to add Super admins, manage other Admins, view reports and manage billing information. Admins cannot view the Account section with the admin portal, pay/view invoices, view reports, or access call recordings unless a Super admin has granted those permissions.
- Member: User does not have any system permissions and cannot access the GoTo Admin portal. Cannot add new users, troubleshoot other's devices, They are an end user only.
If you need to change an existing user's role, refer to How do I change a user's role?
If you need a role with different permissions than the system defined roles listed above, you can create a custom role. To create a custom role, refer to How do I manage my roles? The next section contains a list of available permissions which can be used in a custom role.
Permissions
Here are the system permissions currently available which can be used in a custom role:
- Manage licenses: Allows user to assign and revoke product licenses.
- Manage users: Allows user to add, delete, and edit user details.
- Manage user product settings: A subset of the Manage Users permission that allows the user to make changes to product settings for other users.
- Manage user groups: Allows user to add, delete, and edit user groups.
- Manage device groups: Allows user to add, delete, and edit device groups.
- Manage settings templates: Allows user to add, delete, and edit the settings templates.
- Access user history, usage, and data: Allows user to view and export user history, usage and data.
- Access call recordings: A subset of the Access user history, usage, and data permission that allows the user to access call recordings.
PBX Administration (classic)
If you're an admin who signs in at https://my.jive.com/pbx, these steps are for you.
General
| Role/Permission | Description |
|---|---|
| Super Administrator | Super admins have access to modify all aspects of your system, including emergency location information. Only Super admins can add other Super admins to the account, order new or transfer phone numbers, and authorize changes to the firewall and other network settings. |
| Admin (Configure PBX) | Admins have access to modify most aspects of your system except permissions. Admins cannot view the Account section with the admin portal, pay/view invoices, view reports, or access call recordings unless a Super admin has granted those permissions. |
| View Invoices | Users have access to view invoices for the account. |
| Pay Invoices | Users have access to pay invoices for the account. This permission is dependent on them having the View Invoices permission. |
| View Reports | Users have access to system call reports. |
| Access Call Recordings | Users have access to listen to any available call recordings in the call reports. |
| Setting | Description |
|---|---|
| Phone Number Transfer PIN | A four to eight-digit pin used to protect your phone numbers from being transferred without your authorization. |
Dialing
| Permission | Description |
|---|---|
| Internal | Users can dial internal extensions. |
| Local | Users can dial local numbers inside the area code defined on their line. |
| Domestic Long Distance | Users can dial long distance numbers (including toll free numbers) outside the area code defined on their line, but within their country.
Note: This permission may not be applicable to all countries.
|
| Domestic Mobile | Users can dial mobile numbers. This allows user permission control in countries where it is more expensive to call mobile phones.
Note: This permission may not be applicable to all countries.
|
| International | Users can dial international numbers outside the region defined on their line; including US Territories and Foreign States. See our international rates. |
| Toll Numbers | Users can dial numbers that assess per-minute charges (e.g., 1-900 numbers). |
| Malicious Area Codes | Users can dial international numbers that are listed under NANPA (i.e., they are ten-digit dialable). These have extremely high per-minute rates and are often involved in scams. |
Network
| Setting | Description |
|---|---|
| Automatically Authorize Network with Provisioning | |
| Allow Non-Admins to Authorize Own Network |
Prompts
| Description |
|---|
| Users can record sound clips and other users’ directory names on the system. Choose a user or user group to go to its settings. |
Monitoring
| Setting | Description |
|---|---|
| Use Simple Monitoring Permissions | Users can monitor all lines on the system (full monitoring access). |
| Use ACL Monitoring Permissions | Users can only monitor specific lines on the system (limited monitoring access). |
VM/Fax
| Setting | Description |
|---|---|
| Use ACLs | Admins control voicemail access from the Voicemail tab for each line, ring group, and shared voicemail box on the system. Only users listed within Permitted Users/Groups will be granted access to the voicemail box controls. |
| Use Voicemail Box Passwords | The default voicemail access method where passwords are set to each individual mailbox. If multiple people need to access a voicemail box, the password must be communicated to each user. |
| Setting | Description |
|---|---|
| Allow Fax-to-Email | Users with a direct phone number can receive incoming faxes to their email. |
Article last updated: 30 January, 2025
