Internet2 and InCommon host a number of 'Collaborations' that get access to various resources. Each one will be setup with role based access management. Below is a list of our pre-defined roles. At a minimum every collaboration needs at least an owner role and a member role.

Collaboration Roles

Owner: Responsible for managing the existence of the collaboration, its memberships, and access to its resources.
They may manage role memberships directly or delegate to administrators. 

  • Required Group.
  • Contains primary contacts and responsible parties.
  • Uniquely authorized for executive actions to resources; such as:
    • creating or deleting access roles
    • deleting archived content
    • allowing content to be moved or copied externally
  • May or may not get access to resources. Usually gets access to administrative resources.

Administrator: Responsible for managing content and providing support.
They usually get access to administrative application resources to perform their duties.
They may be asked to manage role memberships. An administrator cannot change an access policy (but an owner can). 

  • Not-Required Group.
  • Eligible to receive membership management privileges.
  • Usually gets access to administrative resources.

Contributor: Is expected to assist members, administrators, or owners with content (e.g. Advisors, Consultants, Subject Matter Experts, etc).
Contributors do NOT get access to administrative resources. While a 'Member' may also be a contributor, these groups are not expected to have the same populations. 
They usually get access to specialized resources that may differ from members.

  • Not-Required Group.
  • Usually gets specialized access to resources.

Member: Participating member.
They get default access to resources.

  • Required Group.
  • Gets the default access to resources.

Guest: Participating guest.
They usually get minimal access to resources (e.g. View Only). 
A person who has the guest role is not expected to have any other collaboration role.

  • Not Required Group.
  • Usually gets minimal access to collaboration resources.
  • No labels