- Archive
- /
- Project Matrix
- /
- Permissions & Suggestion Engine
Permissions & Suggestion Engine
Set folder permissions and use the AI suggestion engine for best practices.
Step 5 — Permissions
The Permissions step assigns permission levels to roles on each folder. The suggestion engine analyses your folder structure and matrix to recommend permissions, then role group consolidation reduces the total number of rules.
Strategy presets
Choose a preset to set baseline permission levels. Each preset defines four match tiers:
| Preset | Org + Discipline | Org Only | Discipline Only | No Match |
|---|---|---|---|---|
| Isolated | Full Control | (No Rule) | (No Rule) | (No Rule) |
| Restrictive | Full Control | View/Download | View Only | View Only |
| Collaborative | Full Control | View/Download + PublishMarkups + Upload + Edit | View/Download | View Only |
| Open | Full Control | Full Control | View/Download | View/Download |
You can also use Custom mode to override any tier individually.
How match tiers work
The engine analyses each folder path to detect which party (L1) and discipline (L3) it belongs to. For each role-folder combination, it determines which tier applies:
- Org + Discipline — The role's L1 and L3 both match the folder (highest access).
- Org Only — The role's L1 matches but L3 doesn't.
- Discipline Only — The role's L3 matches but L1 doesn't.
- No Match — Neither L1 nor L3 matches (baseline access).
AI-enhanced function overrides
Click Enhance Levels to get AI-suggested per-function (L2) overrides. For example, the AI might suggest that "BIM Lead" gets Full Control at the org+discipline tier while "General" only gets View/Download. A grid shows each L2 function with two dropdowns — one per tier.
Role filter
Three rows of clickable chips (L1, L2, L3) let you control which roles participate in permission generation. Left-click to include only that value; right-click to exclude it (exclusions take priority). A counter shows how many roles are included.
Role group consolidation
When all individual roles covered by a group share the same permission on a folder, the system automatically replaces them with a single group rule. Consolidated entries appear with a purple ring and a tooltip showing how many individual rules were replaced. An info panel shows the total consolidation savings.
Assigning permissions
You can assign permissions in two ways:
- Bulk actions — Select folders using checkboxes, pick a role from the searchable dropdown (grouped into Role Groups, Matrix Roles, and ACC Roles from CSV), choose a permission level, and apply to all selected folders.
- Inline editing — Expand any folder row to see its current permissions and add or remove individual role-permission pairs.
Before applying suggestions, a preview panel shows the total rule count, breakdown by permission level, and consolidation savings. You can apply to all folders or only to folders without existing permissions.
Permission application
Once permissions are configured, they can be applied to ACC. The application process:
- Resolves folder paths to ACC folder IDs.
- Resolves role names to ACC role IDs via the project's CSV.
- Applies permissions in batches (up to 50 per folder) with parallel execution.
- Reports success and failure counts.