Roles

About Roles

Roles can be associated with numerous Security Groups. When a Security Role is assigned to a Security User, the user is granted all the privileges that have been granted to the Security Groups associated with the Security Role. Assigning Security Roles to Security Users is an efficient way to provide data permissions to the users that they will need to execute tasks in APM.

Note: Regardless of the Security Group membership, Super Users have access to all the APM features and functionalities.

The following tables list the baseline Security Roles available for the users within APM, the baseline Security Groups assigned to each Security Role, and the privileges associated with each Security Role.

Important: To avoid granting unintended privileges to a Security User, before assigning a Security User to a Security Role, make sure that you review all the privileges granted to the Security Groups that are assigned to the Security Role. Additional Security Roles, as well as Security Groups assigned to existing Security Roles, can be added via Security Manager.

Analytics


Role	Group	Role Privileges
MI Analytics Administrator	MI Cognitive Administrator	The users can view, create, update, and delete cognitions, cognition-related logs, and standard lists.
MI Analytics Power	MI Cognitive User	The users can: View, create, update, and delete cognitions. View the cognition-related logs and standard lists.

APM Viewer


Role	Group	Role Privileges
MI APM Viewer	MI ACA Member MI AHI Viewer MI AMS Asset Portal Viewer MI ASI Viewer MI ASM Viewer MI Calibration Viewer MI eLog Viewer MI GAAViewer MI GE Viewer MI Hazards Viewer MI Inspection Viewer MI LCC Viewer MI Metrics Viewer MI MOC Viewer MI Policy Viewer MI PROACT Viewer MI Production Loss Accounting Manager MI RBI Viewer MI RCM Viewer MI Reliability Viewer MI Rounds Designer Viewer MI SIS Viewer MI Thickness Monitoring Viewer	The users have the view privileges for most of the APM records.

APMNow


Role	Group	Role Privileges
MI APMNow Admin	MI APMNow Admin MI Metrics Administrator MI Policy Designer	The users can access Tools and certain administrative features.

Data Loader


Role	Group	Role Privileges
MI Data Loader Admin	MI Calibration Administrator MI CMMS Interface Admin MI Site Reference User	The users have all the privileges applicable to the users assigned to the MI Data Loader User role. Additionally, the users can delete the data load configuration records and interface log records. To use a data loader specific to a module, the users need additional permissions specific to that module. For more information, refer to the appropriate Mappings documentation.
MI Data Loader User	MI Calibration User MI CMMS Interface User MI Site Reference User	The users can access to the Data Loaders feature, and can view, update, and create data load configuration records and interface log records. To use a data loader specific to a module, the users need additional permissions specific to that module. For more information, refer to the appropriate Requirements Mappings documentation.

Reliability


Role	Group	Role Privileges
MI FE Administrator	MI GAA Administrator MI Policy Designer MI Policy User MI Policy Viewer MI PROACT Administrator MI PROACT Team Member MI Production Loss Accounting Administrator MI Production Loss Accounting Manager MI Production Loss Accounting User MI PROACT Viewer MI Production Loss Accounting Service MI Reliability Administrator MI Reliability User MI Reliability Viewer	The users have all the privileges applicable to the users assigned to the MI FE PowerUser role. Additionally, the users have administrative privileges for the Generation Availability Analysis, Root Cause Analysis, Production Loss Analysis, and Reliability Analytics features.
MI FE PowerUser	MI GAA Analyst MI Policy User MI Policy Viewer MI PROACT Team Member MI Production Loss Accounting Manager MI Production Loss Accounting User MI PROACT Viewer MI RCM Viewer MI Reliability User MI Reliability Viewer	The users have all the privileges applicable to the users assigned to the MI FE User role. Additionally, the users can: Create, update, and delete Root Cause Analyses, Production Plans, Production Events, Production Losses, Production Analyses, System Reliability Analyses, Spares Analyses, Reliability Distribution Analyses, Probability Distribution Analyses, Reliability Growth Analyses, and Automation Rules. Update Production Data and link Production Events to Root Cause Analyses. Create and update GAA Events and GAA Performance records.
MI FE User	MI GAA Analyst MI GAA Viewer MI Policy User MI Policy Viewer MI PROACT Team Member MI Production Loss Accounting User MI PROACT Viewer MI RCM Viewer MI Reliability User MI Reliability Viewer	The users can access the GAA Company, GAA Plants, GAA Units, GAA Events, GAA Performance records, Root Cause Analyses, Production Loss Analyses, Production Analyses, System Reliability Analyses, Spares Analyses, Reliability Distribution Analyses, Probability Distribution Analyses, Reliability Growth Analyses, and Automation Rules features.

Foundation


Role	Group	Role Privileges
MI Foundation Admin	MI Site Reference User MI ACA Administrator MI ACA Member MI ACA Owner MI SAP Interface User MI Configuration Role MI Security Role MI Catalog Administrator MI Metrics Administrator MI Policy Administrators MI eLog Administator MI eLog Contributor MI eLog Viewer Security Group for Query Export	The users have all the privileges applicable to the users assigned to the MI Foundation Power role. Additionally, the users can configure mappings for the devices and view the SAP System records. In addition, the users have administrative privileges for the Catalog, Tasks, and ACA records features.
MI Foundation Power	Everyone MI Devices Power Users MI Devices Users MI Recommendation Management User MI Task Manager User MI Site Reference User MI Policy Designer MI ACA Member MI ACA Owner MI SAP Interface User MI Power User Role MI Metrics User MI eLog Contributor MI eLog Viewer Security Group for Query Export	The users have all the privileges applicable to the users assigned to the MI Foundation User role. Additionally, the users can: Save data from the devices in the APM database. Create and manage the Site Reference records. Update, add, and delete the ACA records. View the SAP System records. Add the users to the states. Remove the users from the states.
MI Foundation User	Everyone MI Devices Power Users MI Devices Users MI Recommendation Management User MI Task Manager User MI ACA Member MI Policy User MI ACA Owner MI Metrics User MI SAP Interface User MI eLog Contributor MI eLog Viewer Security Group for Query Export	The users can: Send and receive data from the devices. Create and manage the recommendations Create and update the tasks. View and create the ACA records. View the KPIs, Scorecards, and Metric Views. View the SAP System records.

Health


Role	Group	Role Privileges
MI Health Admin	MAPM Security Group MI AHI Administrator MI AMS Suite APM Administrator MI GE Administrator MI Lubrication Management Administrator MI Lubrication Management User MI Operator Rounds Administrator MI Operator Rounds Mobile User MI Policy Administrator MI Policy Designer	The users have all the privileges applicable to the users assigned to the MI Health Power role. Additionally, the users can access the Rounds and Asset Health Manager features.
MI Health Power	MI Operator Rounds Mobile User MAPM Security Group MI AHI User MI Policy Designer MI GE User MI Lubrication Management User	The users have all the privileges applicable to the users assigned to the MI Health User role. Additionally, the users can create, update, and delete policies, policy instances, policy recommendations, and health indicator values.
MI Health User	MI Operator Rounds Mobile User MAPM Security Group MI AHI User MI Policy Designer MI GE User	The users can: Access the Rounds Data Collection mobile features. Create recommendations and acknowledge heath indicators in Asset Health Manager. View policy data. Create policy instances in Policy Designer. Create and modify AMS Asset recommendations.

Integrity


Role	Group	Role Privileges
MI Mechanical Integrity Administrator	Criticality Calculator MI Inspection MI Policy Viewer MI RBI Administrator MI RBI Analyst MI RBI Calculation Policy Viewer MI RBI Recommendation Policy Viewer MI RBI Risk Mapping Policy Viewer MI Thickness Monitoring Administrator MI Thickness Monitoring Inspector MI Thickness Monitoring User	The users have all the privileges that are applicable to the MI Mechanical Integrity Power role. Additionally, users have administrative privileges for the Thickness Monitoring and RBI features and can access the RBI data mapping and reference tables.
MI Mechanical Integrity Power	Criticality Calculator MI Inspection MI Policy Viewer MI RBI Analyst MI RBI Calculation Policy Viewer MI RBI Recommendation Policy Viewer MI RBI Risk Mapping Policy Viewer MI Thickness Monitoring Inspector MI Thickness Monitoring User	The users have all the privileges that are applicable to the MI Mechanical Integrity User. Additionally, users can access the criticality calculator family and RBI features (except data mapping). The users have view privileges for all the RBI families.
MI Mechanical Integrity User	MI Inspection MI Thickness Monitoring Inspector MI Thickness Monitoring User	The users can access the T-Min Calculator, Archive Corrosion Rates, Exclude TMLs, and Renew TMLs features. Additionally, users have basic access to the Inspection and Thickness Monitoring features.
MI Mechanical Integrity Viewer	MI Inspection Viewer MI RBI Viewer MI Thickness Monitoring Viewer	The users have view privileges to all the families in Risk Based Inspection, Thickness Monitoring, and Inspection Management.
MI Inspection Viewer	MI Inspection Viewer	The users have view privileges to all the families in Inspection Management.
MI Inspection	MI Inspection	The users have access to all the families in Inspection Management. Additionally, users can access Compliance Strategy and Compliance Policy Mapping.
MI Inspection Supervisor	MI Inspection Supervisor	The users are populated in the Reviewers Name field of the baseline inspection workflow, and can create, update, review, and approve an inspection. Note: This role does not have an added group. To access a specific module or a feature, add the relevant group to the user.
MI Inspector	MI Inspector	The users are populated in the Inspection Report Owner field of the baseline inspection workflow, and can create, update, review, and send inspections for approval. Note: This role does not have an added group. To access a specific module or a feature, add the relevant group to the user.
MI Contract Inspector	MI Contract Inspector	The users have privileges to create and update an inspection as a third-party inspector. Note: This role does not have an added group. To access a specific module or a feature, add the relevant group to the user.
MI Thickness Monitoring Administrator	MI Thickness Monitoring Administrator	The users have all the privileges that are applicable to the MI Thickness Monitoring Inspector. Additionally, users have administrative privileges for Thickness Monitoring features and can access the TM Rules Lookup, data mapping, and reference tables.
MI Thickness Monitoring Inspector	MI Thickness Monitoring Inspector	The users have all the privileges that are applicable to the MI Thickness Monitoring Viewer. Additionally, users can access the Thickness Measurement Locations, Datapoints, T-Min Calculator, Archive Corrosion Rates, Exclude TMLs, and Renew TMLs features along with other basic TM features.
MI Thickness Monitoring User	MI Thickness Monitoring User	The users have all the privileges that are applicable to the MI Thickness Monitoring Inspector. However, the Thickness Monitoring User is restricted from deleting some of the Thickness Monitoring records like Datapoint Measurement.
MI Thickness Monitoring Viewer	MI Thickness Monitoring Viewer	The users have view privileges to all the families in Thickness Monitoring.
MI Compliance Administrator	MI Compliance Administrator	The users have all the privileges that are applicable to the MI Compliance Analyst. Additionally, users can create, update, or delete Compliance Strategy Templates and link/unlink assets to the Compliance Strategy Template. Note: This role does not have an added group. To access a specific module or a feature, add the relevant group to the user.
MI Compliance Analyst	MI Compliance Analyst	The users have privileges to suggest and apply Compliance Strategy Templates, create Inspection Plans, and update Compliance Recommendations. Note: This role does not have an added group. To access a specific module or a feature, add the relevant group to the user.
MI Inspection Plan Approver	MI ASM Analyst	The users have privileges to update and approve an Inspection Plan. Additionally, users have view privileges for Compliance Management, Inspection Management, and Risk Based Inspection.
MI RBI Administrator	MI RBI Administrator	The users have all the privileges that are applicable to the MI RBI Analyst. Additionally, users have administrative privileges for RBI features and can access the RBI data mapping and reference tables, but cannot update an Inspection Plan.
MI RBI Analyst	MI RBI Analyst	The users have all the privileges that are applicable to the MI RBI Viewer. Additionally, users have privileges for calculating RBI Analysis and associated functionalities related to an RBI Analysis such as Duplicate Analysis, Apply Analysis, and Create What-If Analysis. Users can also update an Inspection Plan.
MI RBI Viewer	MI RBI Viewer	The users have view privileges to all the families in Risk Based Inspection.

Safety


Role	Group	Role Privileges
MI Safety Admin	MI Calibration User MI Calibration Administrator MI Calibration Viewer MI HA Administrator MI HA Facilitator MI HA Member MI HA Owner MI Hazards Viewer MI MOC Administrator MI MOC Viewer MI SIS Administrator MI SIS Engineer MI SIS User MI SIS Viewer	The users have all the privileges applicable to the users assigned to the MI Safety Power role. Additionally, the users can create, modify, and delete all the records in Calibration Management, Hazards Analysis, LOPA, MOC, and SIS Management.
MI Safety Power	MI Calibration User MI Calibration Viewer MI HA Facilitator MI HA Member MI HA Owner MI Hazards Viewer MI MOC Approver MI MOC Viewer MI SIS Engineer MI SIS User MI SIS Viewer	The user can access the following records: Initiating Event Consequence Adjustment Probabilities IPL Checklist Active IPL Passive IPL Human IPL Asset Safety Preferences Additionally, the users have all the privileges applicable to the users assigned to the MI Safety User role, and can create, modify, and delete all other records in Calibration Management, Hazards Analysis, LOPA, and SIS Management.
MI Safety User	MI Calibration User MI Calibration Viewer MI HA Facilitator MI HA Member MI Hazards Viewer MI MOC User MI MOC Viewer MI SIS Engineer MI SIS User MI SIS Viewer	The users can access the Recommendations, Calibration Templates, Risk Threshold records, Protective Instrument Loops, SIL Assessments, and SIL Threshold records features. Additionally, the users can access, create, modify, and delete all other records in Calibration Management, Hazards Analysis, LOPA, MOC, and SIS Management. In MOC, the users can access, create, modify, and delete General Recommendations.

State Management


Role	Group	Role Privileges
SM_Analyst	None	The users can transition states using State Management.
SM_Approver
SM_Assessor
SM_Coordinator
SM_Facilitator
SM_Implementor
SM_Initiator
SM_Owner
SM_Planner
SM_Team Leader

Strategy


Role	Group	Role Privileges
MI Strategy Admin	MI AHI Administrator MI AHI User MI ASI Administrator MI ASI User MI ASI Viewer MI ASM Administrator MI ASM Analyst MI ASM Reviewer MI ASM Viewer MI Calibration User MI Calibration Viewer MI Inspection MI LCC Administrator MI LCC User MI LCC Viewer MI Lubrication Management Administrator MI Operator Rounds Administrator MI RBI Analyst MI RCM Administrator MI RCM User MI RCM Viewer MI SIS User	The users have all the privileges applicable to the users assigned to the MI Strategy Power role. Additionally, the users have administrative privileges for the Reliability Centered Maintenance, Failure Modes and Effects Analysis, Asset Strategy Implementation, and Life Cycle Cost Analysis features.
MI Strategy Power	MI AHI Administrator MI AHI User MI ASI User MI ASI Viewer MI ASM Analyst MI ASM Reviewer MI ASM Viewer MI Calibration User MI Calibration Viewer MI Inspection MI LCC User MI LCC Viewer MI Lubrication Management Administrator MI Operator Rounds Administrator MI RBI Analyst MI RCM User MI RCM Viewer MI SIS User	The users have all the privileges applicable to the users assigned to the MI Strategy User role, and the administrative privileges for the Asset Health Manager feature.
MI Strategy User	MI AHI User MI ASI User MI ASI Viewer MI ASM Analyst MI ASM Viewer MI Calibration User MI Calibration Viewer MI Inspection MI LCC User MI LCC Viewer MI Lubrication Management Administrator MI Operator Rounds Administrator MI RCM User MI RCM Viewer MI SIS User	The users have the view, create, update, and delete privileges for the Reliability Centered Maintenance, Failure Modes and Effect Analysis, Asset Strategy Implementation, Asset Strategy Management, and Life Cycle Cost Analysis features. Additionally, the users have the administrative privileges for Rounds feature, and view privileges for Asset Health Manager and Calibration Management features.