CIPP features a role management system which utilises the Roles feature of Azure Static Web Apps. The roles available in CIPP are as follows:
|readonly||Only allowed to read and list items and send push messages to users.|
|editor||Allowed to perform everything, except editing tenant exclusions and standards|
|admin||Allowed to perform everything.|
You can assign these roles to users using the Role Management system of Azure Static Web Apps
After the invite link is sent to the user, they must click on it to accept the invite and gain access to the app. The invites expire after a specific amount of time.. Note this link must be sent manually to them, it is not e-mailed.
To assign a role to a user you would follow these steps:
- Go to the Azure Portal.
- Go to your CIPP Resource Group.
- Select your CIPP Static Web App
- Select Role Management (Not IAM Role Management).
- Select invite user.
- Add the roles for the user.