Role-based access control is a security mechanism that is designed to work with two basic user-defined elements: users and roles. Role-based access control limits users to executing only the system menu items belonging to their assigned role or roles.

Users and Roles illustrates the interaction of system users, role permissions, and role membership to determine the resources that are available to a user.