Gateway features a robust set of features for configuring and managing user groups, roles and permissions. Gateway administrators manage Gateway user groups, then assign permissions to user groups based on Gateway endpoints to give those groups access to those endpoints.
When authenticating with BlueCat Address Manager or Micetro, Gateway users are mapped to users on the system that Gateway).
When using Standalone authentication, Gateway supports only a single user that belongs to the built-in admin group.
Users belonging to the admin group have permissions to access all built-in Gateway workflows. You can configure permissions on the
Permissions page. (Click 
Settings at the bottom of the navigator on the left,
then click Permissions.)
In order to assign permissions to user groups, a user must be a member of a group with the
workflow_permissions permission. Also, in order to edit settings for user
groups, a user must be a member of a group with the group_settings
permission.
By default, only members of the admin group have these permissions. For
details on assigning permissions to other groups on the Permissions
page, see Assigning page and REST endpoint permissions.