Managing permissions

By configuring access rights in Episerver, you can control what visitors and users can see and do on the website, and in the user interface. For example, you can control which pages visitors see, and if they are allowed to add product reviews on an e-commerce site. For users, you can control which functionality different user groups should have access to, and what they can do. For example, create, edit, or publish pages, edit mailings, or do administrative tasks.

Different parts of the Episerver platform have different built-in roles and groups that are used to control authentication and authorization on a granular level. Permissions are usually set up by developers during implementation and service onboarding. You need to have administrator access to configure access rights in Episerver.

Front-end access

You can for example control which parts of the website content structure that should be available to all visitors, and which parts should have restricted access only available to logged in users. You can also allow visitors to post comments on the site through access rights. See Access rights in CMS.

User interface access

Global menu

What you see in the global menu of Episerver when logged in, depends on what parts of the platform you have in your implementation, and your permissions. During onboarding and setup of Episerver, the global menu is configured and access rights are defined for different user groups. Parts of the platform may also be accessed through a specific URL.

Features

Selecting a product in the global menu displays the functionality areas for each product. The options you see depend on your permissions. In CMS for example, you will see all available options Edit, Admin, Reports, and Visitor Groups, if you have administrator access. Users with only editor access will not see the Admin option.

Access to functionality

Depending on the products in your implementation, refer to the following sections for more information.

Episerver CMS

See Access rights in CMS how to manage access rights for website content.

Episerver Commerce

See Access rights in Commerce how to control access for product catalogs, discounts, and order management.

Episerver Campaign

See Permissions in Campaign how to manage access rights for users and mailing clients.

Episerver Find

See Access rights in Find how to configure access to search optimization features.

Personalization

See Personalization, Insight, and Visitor Groups, how to work with access rights for personalization features.

Episerver Add-ons

Add-ons are plug-ins for extending Episerver in different areas. Add-ons may have specific user groups defined to access the functionality. See each add-on to find out more.