Organization administrators control user access, roles, permissions, and privileges within their organizations.

Organization administrators control which users can access their organizations and what those users can do. Only organization administrators can grant access to their organizations and assign roles to users within their organizations.

Users can belong to multiple organizations and can be granted multiple roles within those organizations in either By Organization or Global mode systems.

In a By Organization system, each organization has a distinct user list that is not visible to other organizations. To join an organization, users send a request to the organization administrator, or the organization administrator can invite a user to join.

In a Global system, the user list for the system is visible to all organizations. All users belong to all organizations. Organization administrators grant roles to users to enable them to perform tasks in the organization.

Organization administrators can grant any roles defined within their organizations to organization users. In By Organization mode, the user must be on the organization's user list.

Organization administrators control what users can do in their organizations by defining roles, privileges, and permissions within their organizations, then granting them to organization users. Roles are specific to the organization in which they are created and are not visible to other organizations.

See Managing Users and Roles.