SOT
    • Introduction
    • Release notes
      • Breaking changes
    • User manual
      • Introduction
      • Navigating Industrial Application System
        • Navigation menu
        • Header
        • Managing favorite menu entries
      • Dashboards
        • Creating a dashboard space
        • Sharing a dashboard space
        • Creating a dashboard
        • Editing a dashboard
        • Applying dashboard filters and templates
        • Marking dashboards as favorites
        • Adding Web Portal widgets
      • User profile
      • Support
      • User help
      • Screen display modes
      • System information
      • System Settings
        • Footer and Privacy
        • Skinning
        • Navigation Menu
    • Operations manual
      • Overview
      • System architecture and interfaces
      • System requirements
        • portal/coreservice
      • Migration from previous versions
        • From 5.24 to 5.25
        • From 5.23 to 5.24
        • From 5.22 to 5.23
        • IAS 2025.01.00 (Portal 5.20)
        • From 5.15 to 5.16
        • Helm job for database migration (>5.15)
        • From 5.14 to 5.15
        • From 5.13 to 5.14
        • From 5.12 to 5.13
        • From 5.11 to 5.12
        • From 5.10 to 5.11
        • From 5.9 to 5.10
        • From 5.8 to 5.9
        • From 5.7 to 5.8
        • From 5.6 to 5.7
        • From 5.5 to 5.6
        • From 5.3 to 5.4
        • From 5.1 to 5.2
        • Resource mapping from MES to IAS
      • Setup and configuration
        • Permission and roles
        • Support section
        • Training & documentation section
        • Legal information and footer section
        • Cookies
        • Secure configuration
        • Configuration of sections in menu
        • API documentation - footer configuration
        • Environment variables
          • Global variables
          • portal/coreservice
          • portal/systemtests
          • Application variables exposed in Helm chart
      • Start and shutdown
        • Startup dependencies
        • Background tasks
        • Health and availability APIs
      • Regular operations
        • Removing / deregister / unregister a module
        • User data deletion
      • 09_failure_handling/index.adoc
      • Backup and Restore
      • Logging and monitoring
      • Known limitations
    • Developer documentation
      • Concepts
        • General
        • Navigation
        • Dashboard
        • Cross-module communication
        • Documents
        • Security
        • Limitations
      • How to…​
        • register your module & views
        • implement context contribution
        • develop a Web Portal-compatible frontend
        • use the iframe integration library
        • build widgets
        • check the integration status
        • improve UI performance
      • Troubleshooting
    • API documentation
    • Glossary
Web Portal
  • Smart Operations Toolkit
    • Deviation Processor
    • Multitenant Access Control
    • Notification Service
    • Ticket Management
    • Web Portal
  • Shopfloor Management
    • Andon Live
    • KPI Reporting
    • Operational Routines
    • Shift Book
    • Shopfloor Management Administration
  • Product & Quality
    • Process Quality
    • AI Services
  • Machine & Equipment
    • Condition Monitoring
    • Device Portal
  • Enterprise & Shopfloor Integration
    • Information Router
    • Master Data Management

SOT Learning Portal

  • Web Portal
  • Operations manual
  • Setup and configuration
  • Permission and roles

Permission and roles

Web Portal creates following permissions and roles during startup.

All users who need access to Web Portal must have the role Web Portal user role assigned. Without this role the side navigation is empty. Roles and permissions are not inherited. That is, a user with the role Web Portal Admin must also have the role Web Portal User. If the roles and resources are no longer needed (e.g., if the functionality has changed and the resources and roles are no longer used), then these roles and resources must be deleted manually.
Role Permissions For Comment

Web Portal User

View (read) side navigation.

User

Required to use Web Portal. Grants access to the side navigation.

Web Portal Admin

View (read) and maintain (modify) customer configuration of Web Portal (e.g., footer and skinning configuration).

User

Required for Business Role "Administrator".

Web Portal Operator

Un-register (delete) system registration (un-register modules from Web Portal).

View (read) integration status of modules (of the same organization).

View (read) and upload (modify) the default group structure of the menu.

View (read) detailed health endpoint information.

User

Operator users of sub-organizations cannot view integration status of modules registered on the BCI organization.

Web Portal Registration

Register (read + add + modify) modules at Web Portal

User / Application Client

Module registration at Web Portal via API (assigned to auth provider clients of integrated modules).

Web Portal Custom Registration

Register custom modules and custom views (read + add + modify + delete) modules at Web Portal

User / Application Client

Module custom registration at Web Portal UI (custom modules and views in Web Portal configuration, assigned to Web Portal Admin users).

DigitalWorkplace Keyuser

View (read) the DigitalWorkplace Link section on the support page

User

Users with this role will see a link to the DigitalWorkplace ticket system from BCI/OPS on the support page. It requires a separate user that’s why the link is not shown to all users.

Web Portal User Profile Reader

View (read) profiles of users

Application Client

Grants access to profiles of users.

Service account roles

In order that Web Portal can request facilities from Master Data Management, the Role "MMPD User" must be assigned to the Web Portal in the MACMA Modules view. Web Portal uses facilities on the Dashboard Facility selector.

Contents

© Robert Bosch Manufacturing Solutions GmbH 2023-2026, all rights reserved

Changelog Corporate information Legal notice Data protection notice Third party licenses