Checking your rights and role assignments

The roles you are assigned control your access rights and the accounts you can use to log on. You can look up detailed information about your rights and role assignments by right-clicking the Centrify icon, then selecting Open Authorization Center. For example:

You can then click the tabs to see information about your current role and any other roles you have been assigned. For example, from Authorization Center, click the following tabs to see more detailed information about how the roles you have been assigned are configured:

  • Click Effective Login Rights to see information about your local, remote, and PowerShell login rights and whether auditing is requested, required, or not applicable.
  • Click Effective Roles to see information about the roles you have been assigned and the current status of each role. For any roles, you can right-click a role, then select Role Properties to view additional details. For example, if any of your roles are Inactive, you can right-click to see the time constraints defined for the role. You can also view the specific type of rights granted by each role.
  • Click Role Assignments to see detailed information about your role assignments, including where the assignment was made, whether the role is a local or network role, and the start and end times that are in effect for the role. You can right-click a role assignment, then select Assignment Properties or Role Properties to view additional details.
  • Click Role Definitions to see detailed information about the login rights and audit requirements that have been defined for the roles you have been assigned. You can right‑click a role definition, then select Properties to view additional details.
  • Click Auditing to see information about the auditing status for each desktop started in a session.

You can only view information about your own access rights and role assignments in the Authorization Center. Click Close when you are finished viewing authorization information.

After you review information about your access rights and role assignments using Authorization Center, you should have a basic understanding of the roles you have been assigned, any restrictions on when they are available, and what the roles allow you to do. Your role assignments control where you can log on, the type of account you use to log on, the specific access rights you have on local or network computers. As discussed in Roles grant different types of access rights, there are three categories of access rights for Windows computers:

  • Desktop
  • Application
  • Network access

Depending on the details of how roles are defined in your organization and the specific roles you have been assigned, you might have some or all of the access rights described in the next sections.