Skip to main content


Roles define what users can do in Snow.


Roles are used to assign specific permissions or to give access to specific items or functionalities, for example, to give access to specific Microsoft 365 views. You can also use roles to give access to multiple parts of the system to easily assign a user to a function in your organization, for example, a Software Asset Manager role.

Roles and permissions

A role is a collection of permissions. The permissions give access to selected functionality and define what the users can do in Snow.

The permissions have different levels, for example, permission to create, read, update, and delete, or permission to read only.

Custom roles

There are predefined default roles in Snow that you can use as they are. You can also create custom roles to give access to selected functionality. You can base custom roles on a default role or another custom role, or create a custom role without using a base role.

Note that, a custom role and its base role are not connected. Neither changes to the base role nor changes to the custom role affect one another.

Example 1.

Role B is based on Role A so that the two roles include the same permissions. Role A is then updated with an additional permission. The additional permission does not automatically appear in Role B.