# Admin - support roles

Scope	S1	S2 (unrestricted)	S3 (restricted)	S4 (read-only)	S2 (with extras)
access Access to the admin portal.	Yes	Yes	Yes	Yes	Yes
access monitoring Access to monitoring.	-	-	-	-	-
access raw logs Access to confidential scenario data.	-	Yes	Yes	Yes	Yes
access trackman Access to the Trackman Service.	-	-	-	-	-
admins edit Access to admin editing.	-	-	-	-	-
apps approve Can approve apps.	-	-	-	-	-
apps commit Access to commit changes in apps.	-	-	-	-	-
apps edit Access to apps editing.	-	-	-	-	-
apps get Access to apps.	Yes	Yes	Yes	Yes	Yes
apps metadata edit Access to apps metadata editing. This permission is child permission of apps edit.	-	-	-	-	-
decrypt Decryption of confidential data.	Yes	-	-	-	-
decrypt common Decryption of "common data" for packages.	-	-	-	-	-
exceptions get Access to the error database.	Yes	Yes	Yes	Yes	-
extras add Access to adding extra data and operations.	Yes	-	-	-	-
internal services add Can assign internal services.	-	-	-	-	-
log as user Possibility to log in as a different user.	Yes	-	-	-	-
organization edit Access to organization editing.	Yes	-	-	-	Yes
organizations get Access to the list of all organizations.	Yes	Yes	Yes	Yes	Yes
organization view Access to organization detail.	Yes	Yes	Yes	Yes	Yes
packages edit Access to package editing.	-	-	-	-	-
roles edit Access to admin organization and team roles editing.	-	-	-	-	-
scenario edit Access to scenario editing.	Yes	Yes	Yes	-	Yes
scenario logs get Access to scenario logs.	Yes	Yes	Yes	Yes	Yes
scenarios get Access to the list of all scenarios.	Yes	Yes	Yes	Yes	Yes
scenario verify Scenario verification access.	-	-	Yes	-	Yes
scenario view Access to scenario detail.	Yes	Yes	Yes	Yes	Yes
template approve Can manage approved templates.	Yes	-	-	-	-
template edit Access to template editing	Yes	Yes	Yes	Yes	Yes
templates get Access to the list of all templates.	Yes	Yes	Yes	Yes	Yes
template view Access to template detail.	Yes	Yes	Yes	Yes	Yes
users add Can add users.	-	-	-	-	-
users edit Access to user editing.	-	-	-	-	-
users get Access to the list of all users.	Yes	Yes	Yes	Yes	Yes
webhook logs get Access to the webhook logs.	Yes	Yes	-	-	Yes