ixp
latest
false
  • Introduction
      • Capability types
      • Choosing the correct capability
  • Access control and administration
  • Licensing
  • Frequently asked questions
UiPath logo, featuring letters U and I in white

IXP overview guide

Last updated Sep 16, 2025

Custom roles

Apart from the default IXP roles, you can also create and manage custom roles. Adapting custom roles to the specific needs and permissions of users, helps you align more closely with the needs of your organization.

Custom roles are available at tenant level, or project level.

Tenant-level roles

The tenant-level roles can grant the following permissions:

Standard permissions:
  • Authorization / Action: Read

    Users can read the actions or permissions when creating a custom role or when viewing a role.

  • Authorization / Role: Read, Update, Create, Delete

    Depending on the selected permission, users can view, update, or delete existing roles, as well as create new custom roles.

  • Authorization / Role Assignment: Read, Update, Create, Delete

    Depending on the selected permission, users can view, update, or delete existing role assignments. In addition, users can assign roles through the Create permission.

  • IXP: Audit Log - Read

    Users can view the IXP audit logs.

Additional permissions:
  • Authorization / Role Assignment: Export role assignment data

    Users can extract and download information about role assignments, including which roles are assigned to which identities, such as users, groups, or service accounts.

  • IXP: Can perform service-level administration tasks, manage quotas, and create and delete projects.

Project-level roles

The project-level roles can grant the following permissions:

Standard permissions:
  • Authorization / Action: Read

    Users can read the actions or permissions when creating a custom role or when viewing a role.

  • Authorization / Role: Read, Update, Create, Delete

    Depending on the selected permission, users can view, update, or delete existing roles, as well as create new custom roles.

  • Authorization / Role Assignment: Read, Update, Create, Delete

    Depending on the selected permission, users can view, update, or delete existing role assignments. In addition, users can assign roles through the Create permission.

  • IXP:
    • Alert - Read, Write
    • Appliance Configuration - Read, Write
    • Bucket - Read, Write
    • Bucket Item - Read
    • Dashboard - Write
    • Dataset - Read, Write
    • Integration - Read, Write
    • Source - Read
    • Stream - Read, Write
Additional permissions:
  • Authorization / Role Assignment: Export role assignment data
  • IXP:
    • Upload items to raw data buckets.
    • Create, update, and delete messages in a source via the API or the UI, including CSV upload.
    • Export datasets via the UI.
    • Create and delete datasets. Grants all other dataset permissions except dataset export.
    • Create, edit, and delete labels, and pin them to messages in the user's datasets.
    • Pin and unpin trained models and update their tags.
    • Create, modify, and delete sources.
    • View any user properties which have been marked as sensitive, in addition to others.
    • Fetch and advance the output of a stream.
    • Create, modify, and delete streams.

Creating a custom role

To create a custom role, proceed as follows:
  1. Go to the Administration page, and select Manage Access.
  2. Select Service, and then the Roles tab.
  3. Select Create role, and fill in the following fields:
    • Role name - Give your role a descriptive name.
    • Description - Optionally, provide a description.
    • Category - Choose between:
      • Tenant - You can assign this role at tenant-level, and consists of tenant-level permissions.
      • Project - You can assign this role to existing or new projects and consists of project-level permissions.
  4. Select Next to proceed to the permissions page.
  5. In the Standard permissions and Additional permissions tabs, select the permissions to assign to the custom role.
  6. Select Create.

Viewing a custom role

To view a custom role, proceed as follows:
  1. Navigate to the Administration page, and select Manage Access.
  2. Select Service, or a project folder, and then the Roles tab.
  3. Select the ellipsis for the custom role you want to view.
  4. Select View.

Editing a custom role

To edit a custom role, proceed as follows:
  1. Go to the Administration page, and select Manage Access.
  2. Select Service, or a project folder, and then the Roles tab.
  3. Select the ellipsis for the custom role you want to edit.
  4. Select Edit to modify the description and permissions of the custom role.
  5. After making the changes, select Update.

Duplicating a custom role

To duplicate a custom role, proceed as follows:
  1. Navigate to the Administration page, and select Manage Access.
  2. Select Service, or a project folder, and then the Roles tab.
  3. Select the ellipsis for the custom role you want to duplicate.
  4. Select Duplicate & customize, to create a copy of the role and modify its description and permissions.
  5. After making the changes, select Create.

Removing a custom role

To remove a custom role, proceed as follows:
  1. Go to the Administration page, and select Manage Access.
  2. Select Service, or a project folder, and then the Roles tab.
  3. Select the ellipsis for the custom role you want to edit.
  4. Select Delete.
    Note: Deleting a custom role also removes all associated role assignments.

Was this page helpful?

Support and Services
Get The Help You Need
UiPath Academy
Learning RPA - Automation Courses
UiPath Forum
UiPath Community Forum
Uipath Logo
Trust and Security
Terms of Use
Privacy Policy
Cookies Policy
© 2005-2025 UiPath. All rights reserved.