# Bot Permissions

This page lists the available roles and the associated privileges that may be required for certain endpoints:

## Individual Role

| Privileges            |
| --------------------- |
| LOGIN\_WITH\_PASSWORD |

## User Provisioning Role

| Privileges                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        |
| --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| <p>ACCESS\_ADMIN\_API</p><p>ACCESS\_CERT\_PROVISIONING\_API</p><p>ACCESS\_USER\_PROVISIONING\_API</p><p>ACTIVATE\_AND\_DEACTIVATE\_ANY\_ROOM</p><p>ACTIVATE\_SERVICE\_ACCOUNT</p><p>ADD\_AND\_REMOVE\_USERS\_IN\_ANY\_ROOM</p><p>ADMIN\_PRESENCE\_UPDATE</p><p>ADMIN\_RESET\_USER\_PASSWORD</p><p>BULK\_MANAGE\_USERS</p><p>CREATE\_APPS</p><p>CREATE\_END\_USER\_ACCOUNT</p><p>CREATE\_SERVICE\_ACCOUNT</p><p>DEACTIVATE\_END\_USER\_ACCOUNT</p><p>DEACTIVATE\_SERVICE\_ACCOUNT</p><p>LOGIN\_WITH\_SHARED\_SECRET</p><p>MODIFY\_APPS <br>MODIFY\_APPS\_ENTITLEMENTS</p><p>MODIFY\_END\_USER\_ACCOUNT</p><p>MANAGE\_BLACKLIST</p><p>MANAGE\_USER\_DELEGATES</p><p>MANAGE\_INFO\_BARRIERS</p><p>MODIFY\_END\_USER\_ENTITLEMENTS</p><p>MODIFY\_USER\_APPS\_ENTITLEMENTS</p><p>MODIFY\_USER\_DISCLAIMERS</p><p>MODIFY\_SERVICE\_ACCOUNT</p><p>MODIFY\_SERVICE\_USER\_ENTITLEMENTS</p><p>PROMOTE\_AND\_DEMOTE\_OWNERS\_IN\_ANY\_ROOM</p><p>VIEW\_ANY\_STREAM\_DETAILS</p><p>VIEW\_ANY\_STREAM\_MEMBERSHIP</p><p>VIEW\_APPS VIEW\_APPS\_ENTITLEMENTS</p><p>VIEW\_BLACKLIST VIEW\_DISCLAIMER\_AUDIT\_TRAIL</p><p>VIEW\_INFO\_BARRIERS</p><p>VIEW\_PAST\_STREAM\_MEMBERS</p><p>VIEW\_POD\_DISCLAIMERS</p><p>VIEW\_PROFANITY\_ENFORCEMENT\_AUDIT\_TRAIL</p><p>VIEW\_USAGE\_POLICY\_DETAILS</p><p>VIEW\_USER\_APPS\_ENTITLEMENTS</p><p>VIEW\_USER\_AUDIT\_TRAIL <br>VIEW\_USER\_DETAIL</p> |

## Scope Management Role

| Privileges                                                                                                                            |
| ------------------------------------------------------------------------------------------------------------------------------------- |
| <p>ACCESS\_ADMIN\_API</p><p>VIEW\_USER\_AUDIT\_TRAIL</p><p>MANAGE\_ROLE\_SCOPES</p><p>VIEW\_ROLE\_SCOPES</p><p>VIEW\_USER\_DETAIL</p> |

## Content Management Role

| Privileges                                                                                                                                                                                 |
| ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
| <p>ACCESS\_ADMIN\_API</p><p>IMPORT\_MESSAGES</p><p>LOGIN\_WITH\_SHARED\_SECRET <br>SUPPRESS\_MESSAGE</p><p>VIEW\_MANAGE\_MESSAGES</p><p>VIEW\_USER\_DETAIL<br>VIEW\_USER\_ENTITLEMENTS</p> |

## Expression Filter Policy Management Role

| Privileges                                                                                                                                                                                                                                                                      |
| ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| <p>ACCESS\_ADMIN\_API</p><p>DLP\_CRYPTO\_KEY</p><p>MANAGE\_EXPRESSION\_FILTERS</p><p>VIEW\_DLP\_VIOLATION</p><p>VIEW\_PROFANITY\_ENFORCEMENT\_AUDIT\_TRAIL</p><p>VIEW\_EXPRESSION\_FILTERS</p><p>VIEW\_USER\_DETAIL<br>MANAGE\_FILE\_EXTENSIONS<br>VIEW\_USER\_ENTITLEMENTS</p> |

## Audit Trail Management Role

| Privileges                                                           |
| -------------------------------------------------------------------- |
| <p>VIEW\_PRIVILEGED\_USER\_AUDIT\_TRAIL</p><p>ACCESS\_ADMIN\_API</p> |

## Group Manager Role (Distribution List)

| Privileges                                                                            |
| ------------------------------------------------------------------------------------- |
| <p>VIEW\_USER\_DETAIL</p><p>ACCESS\_ADMIN\_API<br>CAN\_CREATE\_DISTRIBUTION\_LIST</p> |

## Malware Scan State User Role

| Privileges                                                     |
| -------------------------------------------------------------- |
| <p>SET\_MALWARE\_SCAN\_STATE<br>VIEW\_MALWARE\_SCAN\_STATE</p> |

## Malware Scan Manager Role

| Privileges                                                                                                                                                |
| --------------------------------------------------------------------------------------------------------------------------------------------------------- |
| <p>VIEW\_MALWARE\_SCAN\_CONFIG<br>ACCESS\_ADMIN\_API<br>VIEW\_MALWARE\_SCAN\_AUDIT\_TRAIL<br>SET\_MALWARE\_SCAN\_CONFIG<br>VIEW\_MALWARE\_SCAN\_STATE</p> |