User Roles

the following roles are available in the authenticator application role description key permissions system administrator owns the authenticator configuration; manages all users and roles full access to all auth screens; create/edit/deactivate users; define roles; configure sso/ldap; view audit log it administrator day to day user management and role assignment create/edit users; assign roles; reset credentials; view audit log shift supervisor manages badge/pin assignment for the shop floor team during a shift reset pin for own team; view active sessions for their location shop floor user authenticates to use mantsu on the shop floor device login via badge, pin or username/password; change own pin