--- title: "How do I enable application permissions for roles?" date: "2025-01-09T14:16:08+00:00" summary: image: type: "page" url: "/acquia-dam/how-do-i-enable-application-permissions-roles" id: "95ab5442-03be-4749-b23b-00a1fe78070c" --- Permissions for Acquia DAM apps must be enabled at the role level. For each role, you'll enable permissions from the Application Permissions table on the Roles page in the Admin app. You can also edit and customize permissions from that page. Certain permissions are enabled by default when one of the [role templates](/acquia-dam/what-are-role-templates "What are role templates?") (i.e., general user, asset admin, user admin, or DAM admin) is selected when you [create a new role](How-do-I-create-roles). App permissions --------------- Permissions are categorized by app – DAM, [Assets](What-does-each-permission-mean), and [Insights](Do-I-need-permission-for-anything-in-Insights), and if enabled, [Portals](/acquia-dam/do-i-need-permission-anything-portals "Do I need permission for anything in Portals?"), [Templates](/acquia-dam/do-i-need-permission-anything-templates "Do I need permission for anything in Templates?"), [Video creatpor](/acquia-dam/what-video-creator-what-can-it-be-used "What is Video Creator? What can it be used for?") and [Workflow](/acquia-dam/do-i-need-permission-anything-workflow "Do I need permission for anything in Workflow?") – which is indicated in the left column of the Application Permissions table. Within each app, permissions are organized by type of role - general users, asset admin users, and DAM admins - which are indicated in the second, third, and fourth columns of the table. You can also customize permissions for each app by clicking the pencil icon. ![user permission table](https://acquia.widen.net/content/e6243510-878b-418e-8fd8-bc17a9284cfb/web/ka0Pb0000006puH00N6g00000WDN1a0EMPb0000081Ynp.png) Role-Based permissions ---------------------- * Permissions must be enabled at the role level * Permissions can be enabled and customized from the Application Permissions table on the Roles page * Default permissions are automatically enabled based on the selected role template (general user, asset admin, user admin, or DAM admin) ### _DAM permissions_ These are the permissions that are available for the DAM app.   #### _Key_ ✓= Enabled automatically for the role template Optional = Must be enabled by DAM admins for the role template   **Application permissions: DAM** **Permission** **Definition** **DAM admin** **User admin** **Asset admin** **General user** Access Admin Tools Access the Admin app in the DAM. ✓ Optional ✓ Optional Administrate Metadata Types Create, edit, and delete metadata types. ✓ Optional Optional Optional Administrate Paths Add, edit, and delete paths. ✓ Optional Optional Optional Administrate Dashboard Messages Create, edit, publish, release, expire, and set permissions for dashboard messages from the Admin app or from the dashboard itself. ✓ Optional Optional Optional WordPress Plugin Use the WordPress plugin in the DAM. ✓ Optional Optional Optional Drupal Module Use the Drupal module in the DAM. ✓ Optional Optional Optional Single Sign-On Administrator Administrate the site's single sign-on (SSO). ✓ Optional Optional Optional Customize permissions --------------------- Customizing allows you to choose the permissions for the role for an app. Choose certain permissions for one app and other permissions for a different one. Select the pencil icon in the Customize column, then check the appropriate permission(s) for the role. Here's what the app permission for Assets look like.   ![Select an app for which to select custom role permissions.](https://acquia.widen.net/content/e3bb16a1-a45c-411e-ac0a-e14cb3f84c89/web/ka0Pb0000006puH00N6g00000WDN1a0EM6g000005Lvqx.png)