DIRECTORY SERVICES
Roles are useful when groups of administrators have specialized responsibilities. If all of the administrators in your organization have identical administrative responsibilities, assign them to all roles.
The access defined in the ACL by a role never exceeds a general access level. For example, even if you give the UserCreator role to an administrator who has Reader access in the ACL, the administrator cannot use the Create menu to create Person documents.
Creator roles
Assign creator roles to control who can create documents in the Domino Directory. To create documents in the Domino Directory, administrators must have:
Modifier roles
Rather than assigning Editor access which allows administrators to modify all documents, assign administrators Author access along with one or more Modifier roles to control the types of documents they can edit. For example, assign the UserModifier role to administrators who are responsible for managing users. Unlike Creator roles, Modifier roles are a true security feature.
The following table describes the available Modifier roles.