Users who have this role can see the Security menu item under the profile menu.

“IFSApplicationAdmin” is the administrator role for Security.

This role is added to every administrator that is provisioned to a tenant. Users assigned to this role have full permission to all the screens in Security.

Users cannot remove this role from their own user details.

Users with this role can manage users, contact groups, and distribution groups. They can revoke client access and manage service accounts and SCIM accounts. They can manage security roles, accounting entities, locations, and custom master data types. They also have access to the Document Authorization page, which allows them to view document types and assign document types to security roles.