Role levels define role hierarchy. The roles hierarchy supports three levels. Roles defined at the highest level (called Business Roles) define operations that have business meaning within the organization. Mid-level roles (called IT Roles) supports technology functions. Roles defined at the lowest level of the hierarchy (called Permission Roles) define lower-level privileges.
A higher-level role automatically includes privileges from the lower-level roles that it contains. For example, a Business Role automatically includes privileges from the IT Roles that it contains. Similarly, an IT Role automatically includes privileges from the Permission Roles that it contains.
Role relationships are not permitted between peer roles within the hierarchy. In addition, lower-level roles cannot contain higher-level roles.
You can modify the label used for each role level in the User Application by defining localized strings for the level’s Name and Description in the role configuration editor.
To associate a role with another role, select it from the list of roles or search for it using Filter. The page displays information about the role. A child role must have a lower role level than the parent role, and the parent role is automatically assigned the privileges assigned to the lower-level roles.