Skip to main content

Understanding User Roles

Modalius Support
Updated

Modalius has user roles that determine what actions someone can perform. Understanding these roles helps you assign appropriate access to team members.

Admin

Full access to all features and settings across the entire system.

Admins can:

  • Manage all users (add, remove, change roles)
  • Access all business units and partners
  • Configure organization settings
  • Do everything Managers and Users can do

Best for: Organization administrators, IT managers

Manager

Can manage users, groups, and business units within their partner organization.

Managers can:

  • Invite and manage users within their organization
  • Access ALL business units under their partner
  • Create and configure business units
  • Manage partner relationships
  • Assign users to groups and business units
  • Configure MFA requirements for the organization (require all users to enable MFA, set grace periods)

Best for: Department leads, operations managers

Standard User

Day-to-day operational access based on assigned groups.

Standard Users can:

  • Access only business units they are explicitly linked to
  • Perform actions based on their group permissions
  • View and work with files (if permitted)
  • Track orders (if permitted)

Best for: Operations staff, customer service, daily users

Choosing the Right Role

Need Recommended Role
Full system control Admin
Manage team and business units Manager
Daily file operations Standard User + appropriate groups

Groups vs. Roles

Roles determine the user's management capabilities (Admin, Manager, User).

Groups determine what specific actions a user can perform (view files, manage connections, run reports, etc.).

A Standard User assigned to the "EDI Support" group has different capabilities than a Standard User assigned to "Full Viewers" group. See the User Groups article for more details.

Security: Multi-Factor Authentication

Organizations can require Multi-Factor Authentication (MFA) for all users to add an extra layer of account security. When MFA is required:

  • All users must set up MFA (Email or Authenticator App) before accessing the platform.
  • Managers can enable the MFA requirement and set a grace period for existing users to complete setup.
  • Individual users can enable MFA voluntarily from their Profile page, even if it is not required by the organization.

See Setting Up Multi-Factor Authentication (MFA) and Managing MFA for Your Organization for step-by-step instructions.

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk