# Role-Based Access Management within a Hierarchical Structure

Organization and role must be created first in order to perform the related permission management for the user.

* **Organization** - Uses tree structure to realize permission control and group management for high-levels to restrict low-levels.
* **Role** - This is the item list displayed on the left side of the management interface, used to achieve the expectation of controlling the functions used.

### Creating Organizations <a href="#toc164347026" id="toc164347026"></a>

1. Log in, and go to **AC User Management** > **Organization** to view the organizational tree diagram.
2. Click **Create** to access the creation page.

![](/files/0bzhLknBfl99N6XYfTD7)

3. Fill in the required field&#x73;**: Dept. name, Contacts name, Contacts telephone** and **Contacts email**.
4. Click the button to the right of **Belonged dept.**, select the organization belonged to from the tree diagram that popped up, and click **Add** to complete adding organization.

<img src="/files/FG3oXZIum1nnprxgkpkO" alt="" width="375">

5. To confirm whether the organization was added successfully, you can view the tree diagram. If the organization was added successfully, you can see the name of the organization added to the right of **Belonged dept.** on the organizational tree diagram.

![](/files/3eJAABsRoKyj8ZDE1wtj)

### Creating Roles <a href="#toc164347027" id="toc164347027"></a>

1. Go to **AC User Management** > **Roles** to view the current list of roles.
2. Click **Create** in the upper right corner to access the role creation page.

![](/files/Tnw70mKLFLeSeedthgQe)

3. Fill in the required field: **Role.**
4. In the **Permissions** field, select the required permissions for the role: click on the parent item to expand the child items, select the necessary options, and click **Create** to complete the creation.

![](/files/zSVJNGSAiYosB3wdyfBN)

5. Enter the newly created role code in the keyword input box, and click **Search** to view the role details in the list.

![](/files/i9QVkqukJD6cu8T4qfhX)

### Creating User Authorization Roles and Organizations <a href="#toc164347028" id="toc164347028"></a>

1. Go to **AC User Management** > **Users** to view the list of existing users.
2. Click **Create** to access the creation page.

![](/files/L0q5GgdzFVUKm7Ltyafz)

3. Fill in the data or make selections as instructed below. The fields marked with “<mark style="color:red;">\*</mark>” are required.
4. Click **Create** to complete the creation.
5. Enter the username in the keyword input box, and click **Search** to view the user data.

![](/files/KmV4vgndUchFnVwxw1Sy)

### Login to Admin Console <a href="#toc164347029" id="toc164347029"></a>

Log in with the newly created username to verify that the user can log in successfully.

1. Open the web browser, and enter the following URL in the address bar:\
   \&#xNAN;*https\://ip address:port number/dgrv4/ac4/login*.
2. Log in with the username and password you registered to digiRunner in the **Username** and **User password** field.
3. Click **Login**. If the authentication is correct, you will be directed to the digiRunner Admin Console.

![](/files/auJ2fvJBqtUncUwld3JE)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.tpi.dev/most-common-use-cases/registering-user-account-and-logging-in-admin-console.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.