CertCentral roles and permission scope
Roles define what a user can do in CertCentral. Available roles depend on your account type.
Roles apply account-wide unless restricted by division settings. Select the role that matches the tasks the user performs in CertCentral.
Tip
Assign at least one additional Administrator to ensure continuous account access if the primary administrator is unavailable.
Subscription and Legacy accounts have two roles:
Role | Permissions |
|---|---|
Administrator | Full administrative access: create and manage users, manage user access |
Finance Manager | Manage finances, place and manage orders |
Enterprise and Partner accounts have up to five roles:
Role | Permissions |
|---|---|
Administrator | Full administrative access: create and manage users, manage user access |
Manager | Manage finances, create and approve requests, manage orders and domains, view and edit users |
Finance Manager | Manage finances, place and manage orders |
Standard User | Place and manage orders. Changes require manager or administrator approval |
Limited User | Place and manage their own orders only. Changes require manager or administrator approval |
Notice
In some account configurations, the Limited User role is created by restricting a Standard User during role assignment rather than selecting a separate role.