Role and permission management
This document explains how to use ERPNext's role permission manager to configure detailed access permissions for each role.
Access Control Mechanism
ERPNext permissions are controlled in three layers:
- Role Permissions — Which DocTypes (documents) can each role read and write.
- User Permissions — Restrict the range of data that specific users can view.
- Role Profile — Templating combinations of roles
Role Permission Manager
Step 1: Open Permission Manager
In the search barロール権限マネージャー Enter the following:
Step 2: Select DocType
Select the document type (DocType) for which you want to set permissions.
Step 3: Check and edit permissions
The following permissions can be set for each role:
| Permissions | Description |
|---|---|
| Read | View documents |
| Write | Edit form |
| Create | New |
| Delete | Delete |
| Submission | Submission of documents (final) |
| Cancellation | Cancellation of submitted documents |
| Correction | Correction of submitted documents |
| PDF Print | |
| Export | CSV Export |
| Report | View Report |
Step 4: Setting the Level
- Level 0: Full form permissions
- Level 1 or higher: Permissions for specific sections (such as child tables)
User Permissions
This restricts the range of data that specific users can see.
Example: If you want to allow access only to data from a specific company.
- In the search bar
ユーザー権限type - Click "+ Add"
- Set the following:
| Item Name | Value |
|---|---|
| User | Target User |
| Permission (DocType) | Company |
| Permitted Values | Donan Hiratsuka Foods |
Once configured, this user will only be able to view data related to "Donan Hiratsuka Foods".
FAQ
Q: Can I create a new role?
Yes. In the search barロール Enter the following → Click "+ Add" to create a new role.
Q: How do I hide a specific field?
Change the "Permission Level" of the target field in the "Custom Form" and control the viewing permissions for that level in the Role Permission Manager.
Next Steps
Once you understand permission management, Email settings Let's move on.