Permission Sets

About Permission Sets

Permission sets specify the actions users can take and the assets on which they can act.

To control user access to Predix Essentials, as a user administrator, you assign permission sets (actions) and one or more assets to individual users or user groups.

Keep the following in mind when planning for permission sets and user access:

  • You can define multiple permission sets. Each permission set can have one or more features.
  • You can assign one or more permission sets to a single user. For example, you can do this when you first add the user to Predix Essentials.
  • You can assign one permission set per user group. User groups provide a convenient and powerful way to manage access for multiple users.
  • You can assign a user to multiple user groups. When you add a user to a user group, the user receives its associated permission sets as defined in the user group definition.

Default Permission Sets

The default permission sets are specified in the table.

You can view the following default permission sets on the Permission Sets page.

Tip: Select the permission set to view all available permissions (actions) for the permission set.
Table 1. Permission Sets
This Permission Set:Can do this:
Foundation AdminHas administrator permissions for the Predix Essentials application.
APM Basic UserAccess APM navigation menu, tools, and basic applications.
Note: If present, this permission set should be selected for all users in the tenant.
User Admin
  • Add more administrators for the tenant.
  • Manage users (add, edit, and deactivate users and permission sets).
  • Manage user groups (add, edit, and deactivate users and permission sets).
Ingestor AdminUsers with the Ingestor Admin role have privileges for the ingestion process.
M&D ManagerMay be assigned permissions to specific MicroApps, such as Alerts, Cases, Analysis, Asset, or Analytics.
SmartSignalHas administrator permissions for SmartSignal.
AnalyticsExecutorRoleHas permissions for the following permission sets:
  • Alerts
  • Manage Analytics catalog
  • Asset – View, ingest, and edit assets
  • Cases
  • Templates – Case and Alert Templates
  • Timeseries – View data sources for Timeseries, Add Timeseries, View Timeseries, and Configure data sources for Timeseries
Custom
  • Perform actions defined in that permission set on assigned assets.

Default Permission Set Definitions

Permissions are required for Predix Essentials modules to function. The following table describes the entities to which each permission in a permission set grants the user access.

Table 2. Permission Sets and Definitions
FeaturePermission Sets and Definitions
Alerts
  • Alerts
    Allows a user to perform the following tasks:
    • Create Alerts
    • Manage Alerts
    • Manage Internal Notes
    • View Limited Visibility Alerts
    • View alert details for General Visibility alerts
    Note: To create an alert, you must have either the Alerts permission, or Manage Alerts and Limited Visibility Alerts permissions.
  • View Alert Detail
    Allows a user to perform the following tasks:
    • View Disposition value
    • View Evidence
    • View the Analysis Template Chart
    • Navigate to Analysis
    • View Asset faceplate
    • View Linked Cases
  • Manage Alerts
    Allows a user to perform the following tasks:
    • Manually create an Alert
    • Change the Alert template
    • Claim an Alert
    • View all the Alert details (see View Alert Detail permissions above)
    • Change Disposition
    • Mark an Alert as Processed
    • Release claim
    • Add Evidence
    • Create a Case from an Alert
    • Create Case bulk action in grid
    • Add notes in bulk edit
    • Create reminder alerts
    • View reminder alert criteria
      Note: Users with Manage Alerts cannot view, add, or delete an Internal Note.
  • View Internal Notes
    Allows a user to perform the following tasks:
    • View all the Alert details
    • View Internal Notes
      Note:
      • Users will not see the Internal Notes section if they do not have this permission.
      • Users have view permissions only; they cannot perform any actions.
  • Manage Internal Notes
    Allows a user to perform the following tasks:
    • View all the Alert Details permissions
    • View, add, and delete Internal Notes. Users can only delete Internal Notes that they created
      Note: Admin must assign the Manage Alerts permission for a user, for that user to perform any actions on alerts.
  • View Limited Visibility Alerts

    Allows a user to view alert details for limited visibility alerts and general visibility alerts.

Note: When only View Internal Notes or Manage Internal Notes is selected, then the View Alert Detail permission is selected by default. In addition, the Manage permission always supersedes the View permission.
Analysis
  • Analysis View – User can:
    • Perform ad hoc Analysis on assets to which they have access, but they cannot save the analyses that they create
  • Analysis Create – User can:
    • Perform ad hoc Analysis on assets to which they have access
    • Save analyses as Templates to support additional research
Analytics
Analytics supports granular permissions to control View and Edit access to its sub-modules/apps. This replaces the default wider permission set of Manage Analytic Catalog. Users with the View only permissions can access the sub-module/app but will not be able to make or save modifications. Users with Manage permissions to a sub-module/app can access, add, and make modifications in that sub-module/app.
  • Manage Analytics - Access and/or modify analytic templates and orchestrations.
  • Manage Deployments and Filters - Access and/or modify deployments and asset filters.
  • Manage Analytic Configurations - Access and/or modify asset filter configuration.
  • View Deployments and Filters - Access deployments and asset filters.
  • View Analytic Configurations - Access asset filter configuration.
  • Blueprints - Access and/or modify blueprints (applicable to Smart Signal only).
APM Connect
  • MI Data Loader Admin
    • The users have all the privileges applicable to the users having MI Data Loader User permissions. Additionally, the users can delete the data load configuration records and interface log records.

      To use a data loader specific to a module, the users need additional permissions specific to that module. For more information, refer to the appropriate Mappings documentation.

  • MI Data Loader User
    • The users can access to the Data Loaders feature, and can view, update, and create data load configuration records and interface log records.

      To use a data loader specific to a module, the users need additional permissions specific to that module. For more information, refer to the appropriate Requirements Mappings documentation.

Asset
Attention: In Predix Essentials, assign only the View Assets permission to users to keep the data synchronized in the Predix Essentials databases.
Note: If user has access to all resources (such as an administrator), all asset restriction policies are ignored.
  • Ingest Assets api
  • View Assets api
  • Edit Assets api
  • Ingest Assets – User can create and edit the asset model for the tenant. User can also view related ingestion logs.
    Attention: In Predix Essentials, users with Ingest Assets permission can edit asset-related data using the Predix Essentials UI. However, the users must not edit asset data other than the groups, templates, tags, geolocation, and classifications to avoid asset data in the Predix Essentials databases to become out of sync.
  • View Assets – User can view all data related to assets, including Asset Instances and Classifications.
  • Edit Assets – User can modify all editable asset data via the user interface. This permission includes: view asset and allows deletion of asset instance.
Asset Health
  • MI Health Power
    • Users can create, update, and delete policies, policy instances, policy recommendations, and health indicator values.
    • Users can access the eLog module. If they are assigned to a Shift, they can also create log entries.
  • MI Health Admin
    • Users have all the privileges that are applicable to the users who have the MI Health Power permissions. Additionally, the users can access the Rounds, Asset Health Manager, Process Data Integration, AMS Analytics, eLog, and GE Analytics features.
    • Users can access the eLog Administrator pages to create Shifts, Templates, and assign Teams to Shifts.
  • MI Health User
    • Users can:
      • Access the Rounds Data Collection mobile features.
      • Create recommendations and acknowledge heath indicators in Asset Health Manager.
      • View policy data.
      • Create policy instances in Policy Designer.
      • View GE and AMS Analytics data.
      • Create and modify AMS Asset recommendations.
      • Access the eLog module. If they are assigned to a Shift, they can also create log entries and manage assignments.
Asset Strategy
  • MI Strategy Power
    • The users have all the privileges applicable to the users having MI Strategy User permission, and the administrative privileges for the Asset Health Manager feature.
  • MI Strategy Admin
    • The users have all the privileges applicable to the users having MI Strategy Power permissions. Additionally, the users have administrative privileges for the Reliability Centered Maintenance, Failure Modes and Effects Analysis, Asset Strategy Implementation, and Life Cycle Cost Analysis features.
  • MI Strategy User
    • The users have the view, create, update, and delete privileges for the Reliability Centered Maintenance, Failure Modes and Effect Analysis, Asset Strategy Implementation, Asset Strategy Management, and Life Cycle Cost Analysis features. Additionally, the users have the administrative privileges for Rounds feature, and view privileges for Asset Health Manager and Calibration Management features.
Audit Logs
  • User Management Audit Log – tenant admin can view details about changes to Administration items.
Cases
  • Cases
    Allows a user to perform the following tasks:
    • View a case
    • Claim a case
    • Create a case
    • Change the status of a case
    • Update the report
    • Add evidence and notes
    • Create a case from an alert
    Note: To create a case, you must have the Cases and View Limited Visibility Cases permissions.
  • View Case Detail
    Allows a user to perform the following tasks:
    • View Case Details
    • View Actions section
    • View Evidence section
    • View Interpretation section
    • View Closure section, if available
    • View any custom sections
    • Access only the Export to PDF option.
    • View the Notes section, add notes or delete notes created by the user.
    Users cannot perform the following tasks:
    • Claim a case
    • Change the case status
    • Create a case
    • Mark any similar case as reference or remove a related case from the Similar Cases section
    • Modify the information in the Evidence, Actions, Case Info, Interpretation, or Closure sections
  • Edit Case Detail

    Allows a user to view or edit a case. However, the user cannot create a case from an alert or create a case in Cases. Therefore, when a user with this permission claims an alert, the user will not see the Create Case button.

  • View Limited Visibility Cases

    Allows a user to view case details of the limited visibility cases and general visibility cases.

Dashboard
  • Dashboard-Update – User can update an existing dashboard. This permission is required to create dashboards as well.
  • Dashboard-Create – User can create a new dashboard and save it.
  • Class-Dashboard – User can create a class level dashboard.
  • Dashboard-View – User can view existing dashboards and create a private dashboard.
  • Default-Dashboard-Instance – User can set an instance level default dashboard.
  • Default-Dashboard-Class – User can set a class level default dashboard.
Failure Elimination
  • MI FE PowerUser
    • The users have all the privileges applicable to the users having MI FE User permission. Additionally, the users can:
      • Create, update, and delete Root Cause Analyses, Production Plans, Production Events, Production Losses, Production Analyses, System Reliability Analyses, Spares Analyses, Reliability Distribution Analyses, Probability Distribution Analyses, Reliability Growth Analyses, and Automation Rules.
      • Update Production Data and link Production Events to Root Cause Analyses.
      • Create and update GAA Events and GAA Performance records.
  • MI FE Administrator
    • The users have all the privileges applicable to the users having MI FE PowerUser permissions. Additionally, the users have administrative privileges for the Generation Availability Analysis, Root Cause Analysis, Production Loss Analysis, and Reliability Analytics features.
  • MI Analytics Power
    • The users can:
      • View, create, update, and delete cognitions.
      • View cognition-related logs and standard lists.
  • MI FE User
    • The users can access the GAA Company, GAA Plants, GAA Units, GAA Events, GAA Performance records, Root Cause Analyses, Production Loss Analyses, Production Analyses, System Reliability Analyses, Spares Analyses, Reliability Distribution Analyses, Probability Distribution Analyses, Reliability Growth Analyses, and Automation Rules features.
  • MI Analytics Administrator
    • The users can view, create, update, and delete cognitions, cognition-related logs, and standard lists.
Foundation
Important: If the Foundation permission set is available in a tenant, you must assign at least one permission from this set to all the users of the tenant. We recommend that the users are assigned the MI APM Viewer permission or APM Basic User Permission set for the assets they need to access.
  • MI Foundation Power
    • The users have all the privileges applicable to the users having MI Foundation User permissions. Additionally, the users can:
      • Save data from the devices in the Predix Essentials database.
      • Create and manage the Site Reference records.
      • Update, add, and delete the ACA records.
      • View the SAP System records.
      • Add the users to the states.
      • Remove the users from the states.
  • MI APM Viewer
    • The users can view most of the Predix Essentials records.
  • MI APMNow Admin
    • The users can access Tools and certain administrative features.
  • MI Foundation User
    • The users can:
      • Send and receive data from the devices.
      • Create and manage the recommendations.
      • Create and update the tasks.
      • View and create the ACA records.
      • View the KPIs, Scorecards, and Metric Views.
      • View the SAP System records.
  • Administrator (Super User)
    • The users can access all the administrative applications and Predix Essentials features and functionalities.
  • MI Foundation Admin
    • The users have all the privileges applicable to the users having MI Foundation Power permissions. Additionally, the users can configure mappings for the devices and view the SAP System records. In addition, the users have administrative privileges for the Catalog, Tasks, and ACA records features.
GAA Wind
  • MI GAA Wind Operator
    • The users have the view privileges in the following families:
      • GAA Company
      • GAA Wind Event
      • GAA Wind Group
      • GAA Wind IEC And NERC Mapping
      • GAA Wind IEC Types
      • GAA Wind Import Details
      • GAA Wind NERC Types
      • GAA Wind Performance
      • GAA Wind Plant
      • GAA Wind Report Configuration
      • GAA Wind Report Details
      • GAA Wind Sub Group
      • GAA Wind Sub Group Capacity
      • GAA Wind Unit
      • Functional Location Has GAA Wind Group
      • Functional Location Has GAA Wind Plant
      • Functional Location Has GAA Wind Sub Group
      • Functional Location Has Generation Company
      • GAA Wind Company Has Plant
      • GAA Wind Group Has Sub Group
      • GAA Wind Plant Has Group
      • GAA Wind Sub Group Has Configuration
      • GAA Wind Sub Group Has Unit
      • GAA Wind Unit Has Equipment
      • GAA Wind Unit Has Events
  • MI GAA Wind Super Administrator
    • The users have the view, insert, update, and delete privileges in the following families:
      • GAA Company
      • GAA Wind Event
      • GAA Wind Group
      • GAA Wind IEC And NERC Mapping
      • GAA Wind IEC Types
      • GAA Wind Import Details
      • GAA Wind NERC Types
      • GAA Wind Performance
      • GAA Wind Plant
      • GAA Wind Report Configuration
      • GAA Wind Report Details
      • GAA Wind Sub Group
      • GAA Wind Sub Group Capacity
      • GAA Wind Unit
      • Functional Location Has GAA Wind Group
      • Functional Location Has GAA Wind Plant
      • Functional Location Has GAA Wind Sub Group
      • Functional Location Has Generation Company
      • GAA Wind Company Has Plant
      • GAA Wind Group Has Sub Group
      • GAA Wind Plant Has Group
      • GAA Wind Sub Group Has Configuration
      • GAA Wind Sub Group Has Unit
      • GAA Wind Unit Has Equipment
      • GAA Wind Unit Has Events
  • MI GAA Wind Administrator
    • The users have the view, insert, update, and delete privileges in the following families:
      • GAA Wind Import Details
      • GAA Company
      • GAA Wind Event
      • GAA Wind Group
      • GAA Wind Performance
      • GAA Wind Plant
      • GAA Wind Report Configuration
      • GAA Wind Report Details
      • GAA Wind Sub Group
      • GAA Wind Sub Group Capacity
      • GAA Wind Unit
      • Functional Location Has GAA Wind Group
      • Functional Location Has GAA Wind Plant
      • Functional Location Has GAA Wind Sub Group
      • Functional Location Has Generation Company
      • GAA Wind Company Has Plant
      • GAA Wind Group Has Sub Group
      • GAA Wind Plant Has Group
      • GAA Wind Sub Group Has Configuration
      • GAA Wind Sub Group Has Unit
      • GAA Wind Unit Has Equipment
      • GAA Wind Unit Has Events
    • The users have the view privileges in the following families:
      • GAA Wind IEC And NERC Mapping
      • GAA Wind IEC Types
      • GAA Wind NERC Types
  • MI GAA Wind Analyst
    • The users have the view privileges in the following families:
      • GAA Wind NERC Types
      • GAA Wind Performance
      • GAA Wind Plant
      • GAA Wind Report Configuration
      • GAA Wind Report Details
      • GAA Wind Sub Group
      • GAA Wind Sub Group Capacity
      • GAA Wind Unit
      • Functional Location Has GAA Wind Group
      • Functional Location Has GAA Wind Plant
      • Functional Location Has GAA Wind Sub Group
      • Functional Location Has Generation Company
      • GAA Wind Company Has Plant
      • GAA Wind Group Has Sub Group
      • GAA Wind Plant Has Group
      • GAA Wind Sub Group Has Configuration
      • GAA Wind Sub Group Has Unit
      • GAA Wind Unit Has Equipment
      • GAA Company
      • GAA Wind Group
      • GAA Wind IEC And NERC Mapping
      • GAA Wind IEC Types
    • The users have the view, insert, update, and delete privileges in the following families:
      • GAA Wind Event
      • GAA Wind Import Details
      • GAA Wind Unit Has Events
BI
  • OData Extract-Cases

    Allows a user to extract Cases data.

  • OData Extract-Alerts

    Allows a user to extract Alerts data.

Administration
  • Manage Users – Can add and deactivate users; add and deactivate user groups; create new permission sets; assign users to user groups, permission sets, and assets; create ingestor tokens in Setup.
Knowledge Management
  • User can search the Knowledge Management System.
KPI Management
  • Search Knowledge Management System – Allows user to search the knowledge management system.
Mechanical Integrity
  • MI Mechanical Integrity Power
    • The users have all the privileges applicable to the users having MI Mechanical Integrity User permissions. Additionally, the users can access the criticality calculator family and RBI features (except data mapping).
    • The users have the view privileges for all the RBI families.
  • MI Mechanical Integrity Administrator
    • The users have all the privileges applicable to the users having MI Mechanical Integrity Power permissions. Additionally, the users have the administrative privileges for the Thickness Monitoring and RBI features and can access the RBI data mapping and reference tables.
  • MI Mechanical Integrity User
    • The users can access the T-Min Calculator, Archive Corrosion Rates, Exclude TMLs, and Renew TMLs features. Additionally, the users have basic access to the Inspection and Thickness Monitoring features.
  • SC Recommendation Management Implementer
    • The users can change the status of the Recommendations from the Approved or In Progress state to the Completed state.
  • SC Recommendation Management Reviewer
    • The users can change the status of the Recommendations from the Pending Approval state to one of the following states:
      • Pending Review
      • Approved
      • Canceled
      • Rejected
Production Loss Analysis (PLA)
  • Production Loss Accounting User
    • Users can update Production Plans, Production Data, and Production Events.
  • Production Loss Accounting Viewer
    • Users can view Production Plans, Production Data, and Production Events. However, the users cannot update the Production Plans, Production Data, or Production Events.
  • Production Loss Accounting Service
    • Users can perform the following operations:
      • Access Production Plans.
      • Enter Production Data.
      • Reconcile Production Losses.
      • Create Production Events.
      However, users cannot create Production Plans.
  • Production Loss Accounting Administrator
    • Users can perform the following operations:
      • Access the PLA Administrator page.
      • Create Plan Templates, Production Units, Production Profiles, and Products.
      • Update Production Data.
Predix Workorder Management
Note: This permission is only for Predix Essentials, not Predix Essentials users.
Users must be assigned this permission to perform the following activities:
  • Create Recommendations from Alerts and Cases
  • View list of recommendations in Alert and Case Details pages
  • View Work Orders in Alert and Case Details pages
  • View Criticality number in Alert and Case Details pages and Asset dashboard
  • View open work orders, completed work orders, and recommendations data in an asset dashboard.
Safety
  • MI Safety Power
    • The user can access the following records:
      • Initiating Event
      • Consequence Adjustment Probabilities
      • IPL Checklist
      • Active IPL
      • Passive IPL
      • Human IPL
      • Asset Safety Preferences

      Additionally, the users have all the privileges applicable to the users having MI Safety User permissions, and have the ability to create, modify, and delete all other records in Calibration Management, Hazards Analysis, LOPA, and SIS Management.

  • MI Safety Admin
    • The users have all the privileges applicable to the users having MI Safety Power permission. Additionally, the users can create, modify, and delete all the records in Calibration Management, Hazards Analysis, LOPA, MOC, and SIS Management.
  • MI Safety User
    • The users can access the Recommendations, Calibration Templates, Risk Threshold records, Protective Instrument Loops, SIL Assessments, and SIL Threshold records features. Additionally, the users can access, create, modify, and delete all other records in Calibration Management, Hazards Analysis, LOPA, MOC, and SIS Management. In MOC, the users can access, create, modify, and delete General Recommendations.
Setup
  • Included with Manage Users from Administration – Available to User Admins to create and view ingestor URLs, username and passwords. Provides the ability to reset ingestion password.
SmartSignal
Note: By default, Predix Essentials does not give users access to the SmartSignal microapps. An administrator must provide each user with permissions to access the SmartSignal applications, as well as modify the permissions for the ingestor user (used to upload assets into Predix Essentials).
  • SmartSignal Evidence – Can view SmartSignal Alerts and charting data for Analysis.
  • SmartSignal Host and Tenant – Setup SmartSignal Hosts and Tenants
    • User can configure SmartSignal hosts.
    • User can configure SmartSignal tenant mappings.
    (user can configure SmartSignal hosts and configure tenant mappings).
  • SmartSignal Mapping
    • Setup SmartSignal Analytic – Can perform SmartSignal asset mapping.
    • Setup SmartSignal Maintenance
For Predix APM native client configurations, users must have the following permissions:
  • SmartSignal Evidence – Setup SmartSignal Evidence
  • SmartSignal Mapping – Setup SmartSignal Analytic
For Predix Essentials configurations, users must have the following permissions:
  • Analytics – Manage Analytics catalog
  • SmartSignal Evidence – Setup SmartSignal Evidence
  • SmartSignal Mapping – Setup SmartSignal Analytic
Stuf
  • Basic group info – Can set up and edit basic group information.
Templates
  • Alert Templates – Can create Alert Templates.
  • Case Templates – Can create Case Templates.
Timeseries
  • View Data Sources for Timeseries – Can view data sources for Timeseries.
  • Add Timeseries – Can ingest and update Timeseries data.
  • View Timeseries – Can view Timeseries data.
  • Configure Data Sources for Timeseries – Can configure data sources for Timeseries.
Units of Measure
  • ViewUoM – User can view the Units of Measure Conversion page.
  • EditUoM – User can edit the Units of Measure Conversion page.
Cross TenancyAdmin user can see the cross tenancy sharing tab.

Create a Permission Set

Before You Begin

You must be logged in with administrator privileges.

About This Task

By creating a set of common permissions, you can later assign the set to users or user groups.

Procedure

  1. In the module navigation menu, navigate to Permission Sets.
  2. Select Add New Permission Set.
  3. In the Permission Set Name box, enter a name for the permission set.
  4. Optional: Enter a description.
  5. In the Permissions section, select the check box next to each permission that you want to assign to the permission set.
    Tip: Select a permission category to select or clear all permissions in that category.
  6. Select Save.

Results

The permission set is created and displayed in the Permission Sets table.

What To Do Next

Modify a Permission Set

Before You Begin

  • You must be logged in with administrator privileges.
  • You must have at least one permission set to modify.

About This Task

You can modify existing permission sets.

Important: Removing or altering permissions to existing features can inadvertently disable user access to required features. Any changes to permission sets affects users and associated user groups.

Procedure

  1. In the module navigation menu, navigate to Permission Sets.
  2. Select the row containing the permission set you want to modify.
    Tip: To freeze a column so that it remains visible when you scroll horizontally, or to hide a column, hover over the name of the column you want to freeze or hide, select , and then select your desired action.
  3. Make changes as needed. The permissions set must retain a valid name and at least one feature.
    Tip: Select a permission category to select or clear all permissions in that category.
  4. Select Save.
    The changes to the permission set are saved.

Delete a Permission Set

Before You Begin

  • You must be logged in with administrator privileges.
  • You must have at least one permission set to delete.

About This Task

You can delete existing permission sets.

Procedure

  1. In the module navigation menu, navigate to Administration > Permission Sets.
  2. In the row containing the permission set that you want to delete, select , and then select Delete Permission Set.
    Tip: To freeze a column so that it remains visible when you scroll horizontally, or to hide a column, hover over the name of the column you want to freeze or hide, select , and then select your desired action.
    The Delete Permission Set window appears.
  3. Select Confirm.

Results

The permission set is deleted and removed from the Permission Sets table.

Activate or Disable Permission Sets or Permissions for Assets

Before You Begin

You must be logged into Predix Essentials as a user administrator.

About This Task

Deactivating a permission set for a user removes access to those features. Deactivating the permission set prevents the user from accessing features associated with that permission set. A user without any permission sets can continue to log in to Predix Essentials. However, the user is unable to use any features. You must add permission sets to the user, or assign a user to a user group, to regain access to features. You can also deactivate access to assets for users and user groups. Deactivating all assets also deactivates all asset-related features.

Procedure

  1. In the module navigation menu, select Administration > Users.
  2. Optional: Disable or enable access to the tenant for a user in the Users page.
    1. In the row containing the user whose status you want to switch, select , and then select Toggle User Status.
      Note: If you want to enable access to the tenant for a user not displayed in the Users page, select Actions, and then select Show Disabled Users.
      The Change Status to Active/Disabled? window appears.
    2. In the Change Status to Active/Disabled? window, select Confirm.
      The status of the user is switched.
  3. Select the row containing the user for whom you want to activate or disable permission sets or permissions for assets.
    Tip: To freeze a column so that it remains visible when you scroll horizontally, or to hide a column, hover over the name of the column you want to freeze or hide, select , and then select your desired action.
    The Edit User page appears.
  4. In the Edit User page, do one or more of the following:
    Doing thisAchieves this
    In the row containing the permission set you want to remove, select , and then select Remove Assignment.Removes user access to those features.
    Switch the Status toggle to show the inactive (gray) state.Removes user access to the tenant.
    Switch the Status toggle to show the active (blue) state.Restores user access to the tenant.
    Select Assign Permission Set, and then select an existing permission set or create a new permission set.Grants feature access for the user.
  5. Repeat the previous step for each permission set and asset as needed.
  6. Select Done.

Results

Changes take effect immediately. You must activate the permission set and assets for the user to have access to the assigned features of the permission set and assets.

Sync Permission Sets

Before You Begin

You must be logged into Predix Essentials as a user administrator.

Procedure

  1. In the module navigation menu, navigate to Permission Sets.
  2. Select Sync Permissions to update changes to permission sets.
    A window appears, stating the permission sync was successful.