Roles
Overview
MetaDefender Managed File Transfer™ includes several predefined roles, also referred to as "User Types." When MetaDefender Managed File Transfer™ is first accessed, the initial user is created as an Administrator. Any local user created afterward must have their role defined during the creation process.
The first created administrator can be deleted, provided other administrators are present.
Roles and Permissions
Administrator: Has comprehensive access and can perform any required system configuration. Administrators can release files but cannot approve them unless they also hold the Supervisor role. Additionally, they can download and preview other users' files.
Helpdesk Administrator: Can manage users (add, remove, edit) and perform administrative tasks. Helpdesk Administrators only have access to their own files.
Auditor: Has access to any file processed by the system. They have view the Processing History, Outbreak Prevention, Audit, Recycle Bin, and Archive. Auditors can also view Supervisor History of files under supervision.
Global Supervisor: A regular user role with additional permissions. Global Supervisors see all files in the pending approval state and can approve them, making them instantly available. They cannot delegate supervisory roles.
User: Controls the files they upload, can share files with internal and guest users, and can create guest users. Refer to the End User Guide for more details.
Automation Coordinator: Can create and manage Automated Jobs.
| Admin | Read Only Administrator | IT Helpdesk | Auditor | User | Global Supervisor | Automation Coordinator | |
|---|---|---|---|---|---|---|---|
| Processing History | Full | Filename and tag | N/A | Full [1] | N/A | N/A | N/A |
| Users | Full | View | Create / Remove / Edit | Self created External / Guest | Self created External / Guest | Self created External / Guest | N/A |
| Supervisor | Full | View | Process Setup | N/A | When Supervisor | Full [5] | When Supervisor |
| Outbreak Prevention | Full | View | Full | Full [2] | N/A | N/A | N/A |
| Trusted Network | Full | View | Full | N/A | N/A | N/A | N/A |
| Notifications | Full | View | Full | N/A | N/A | N/A | N/A |
| Audit | Full | View | Full | Full [2] | N/A | N/A | N/A |
| Recycle Bin / Archive | Full | View | Own files | Full [3] | Own files | Own files | Own Files |
| Settings | Full | View | Full [4] | N/A | N/A | N/A | N/A |
| SFTP Integrations | Full | View | Full | N/A | N/A | N/A | View them at Jobs |
| MFT Integrations | Full | View | Full | N/A | N/A | N/A | View them at Jobs |
| Jobs | Full | N/A | Full | N/A | N/A | N/A | Full |
| My Credentials | Full | N/A | Full | N/A | N/A | N/A | Full |
[1] Full - But without Revoke/Approve/Delete/Permanently Delete/Archive File
[2] Full - But without Settings
[3] Full - But without Restore/Delete/Permanently Delete
[4] Full - But without API keys
[5] Full - Without the ability to delegate other supervisors
The last local administrator's role cannot be changed.
When an existing user's role is changed to Automation Coordinator, they will no longer be able to manage any guest or external users they had previously created.