Understanding role based access on your DNN site

Access to view and manage the site content and settings is controlled using role based access.

Security Roles (or Roles) control a users access to pages and modules.

There are 3 default roles, which are.

1. Administrators- Members of this role have full access to manage everything on the site.
2. Registered Users- Everyone who is logged into the site is assigned this role. Use this role to restrict content to all logged in users.
3. All Users- All Users refers to all site visitors regardless of whether they are logged in or not. This term is used on page and module setting pages to enable them to be set as accessible to 'everyone'.

In addition, when a member logs in, various roles are assigned based on the member's member type, status and the values in the MemNet website roles attribute as explained here.

Note that as part of this login process, all of the users existing roles are removed and reassigned based on the information supplied from MemNet. This ensures that the roles and the access that the user has to content on the website are up to date based on their current MemNet details.

It is possible to override this process and have roles assigned within DNN retained when a member logs in by adding these roles to a DNN Role Group with the name "Do Not Update". Note that a member will retain any roles in this role group regardless of changes to the member type, status or MemNet website roles.

See also:

• How does MemNet integrate with DNN?
• How to configure page permissions on your DNN site.
• How to configure module permissions on your DNN site