[UNCLASSIFIED]
SMART RBAC roles (role descriptions and scope)
How to read this table: This table lists the named SMART roles, what each role is for, and the
maximum scope boundary (“All Organisations” vs “User’s Org Unit”). This is the Ministry’s core
RBAC reference for who is intended to do what in SMART.
Role
Role category
Allowed
Role purpose (summary)
scope
Janison Admin
Administrator
All
Platform level Administration,
Organisations
including roles and permissions 1982
and platform settings.
Ministry Admin
Administrator
All
Highest level of functional
Organisations
administration for assessment.
Act
Dashboard Viewer
Administrator
All
Selected Ministry users needing
Organisations
dashboard visibility.
Item Developer
Author
All
Develop assessment items and
Organisations
related authoring artefacts.
Item Approver
Author
All
Second-level review/approval of
Organisations
authoring content.
Information
Item Reviewer
Author
All
Workflow-only access for
Organisations
authoring review activities.
School
Delivery
User’s
School-level role needing both
Administrator
Organisation
student admin and delivery
Unit
management within their org unit.
Official
Teacher
Delivery
User’s
Create/manage test sessions and
Organisation
delivery activities for their org
the Unit
unit.
Student
Student
User’s
Student role for sitting
Organisation
assessments.
Unit
under
Sector Support
Support
All
Support role intended to provide
Organisations
support across schools (as
defined).
Released
[UNCLASSIFIED]
[UNCLASSIFIED]
SMART RBAC functional differences by module
How to read this table: “Yes” means the role has at least one permission in that module (not
the full detailed permission list). This demonstrates functional separation of duties without
disclosing attack-enabling, permission-by-permission detail.
Role
Home
People
Deliver
Author
Marking
Reports
Assessment
Settings
Janison
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Admin
Ministry
Yes
Yes
Yes
Yes
Yes
Yes
Yes
1982
Admin
Dashboard
Yes
No
No
No
No
No
No
Viewer
Act
Item
Yes
No
No
Yes
No
No
No
Developer
Item
Yes
No
No
Yes
No
No
No
Approver
Item
Yes
No
No
Yes
No
No
No
Reviewer
School
Yes
Yes
Yes
No
Yes
Yes
No
Administrator
Teacher
Yes
Yes
Yes
No
Yes
Yes
No
Information
Student
No
No
No
No
No
No
No
Sector
Yes
Yes
No
No
No
No
No
Support
Official
SMART functional areas
Home
the
The landing area for users after sign-in. Provides navigation to the parts of SMART they can
access, plus high-level summaries such as relevant to their role.
People
under
Manages identities and organisational context. Used to view and manage user accounts and
role assignments, manage learner records and groupings (within permitted scope), and
maintain associations between users, learners, and organisational units (e.g., school).
Supports onboarding, updates, and access administration within role permissions.
Deliver
Runs assessment/aromatawai delivery operations. Used to create and manage assessment
Released
sessions, schedule and administer delivery, manage participation (e.g., assigning learners,
generating access codes where applicable), monitor progress during a delivery window, and
handle delivery-related operational steps needed for learners to sit the assessment.
[UNCLASSIFIED]
[UNCLASSIFIED]
Author
Creates and maintains assessment/aromatawai content. Used for authoring assessment items
and related content, managing authoring workflows (draft → review → approval), and preparing
content for publishing or use in delivery. This module supports content quality processes
through role-based review and approval steps.
Marking
Supports marking and scoring workflows. Used to manage marking tasks (where marking is
required), apply marking guidance/rubrics where relevant, and finalise results needed for
reporting. Separates marking activities from delivery and authoring functions.
1982
Reports
Act
Provides analysis and reporting views. Used to generate and view reports aligned to role scope,
including operational summaries and results outputs that support monitoring and responding
to learner progress. Includes high-level and (where permitted) learner-level reporting views.
Assessment Settings
Used to manage configuration options that affect how SMART operates for an organisation or
across organisations (depending on role).
Information
Official
the
under
Released
[UNCLASSIFIED]
[UNCLASSIFIED]
Role data access classification
How to read this table: This table classifies each role by whether it is intended to access identifiable student-level information, only aggregated/de-
1982
identified views, or (for students) their own records for participation.
Role
Intended scope
Data access type
Notes (intent)
Act
boundary
(classification)
Janison Admin
All Organisations
Student-identifiable
Platform level Administration, including roles and permissions,
platform settings and support.
Ministry Admin
All Organisations
Student-identifiable
Broad administrative and operational management across orgs.
School
User’s Org Unit
Student-identifiable
School-level student/admin and delivery management within org
Administrator
unit.
Teacher
User’s Org Unit
Student-identifiable
Delivery/session management implies access to learner
Information
participation/attempt context within org unit.
Student
User’s Org Unit
Student-identifiable (self)
Role exists for sitting assessments and accessing own participation
context.
Sector support
All Organisations
Student-identifiable
Support across schools implies visibility required to troubleshoot;
(support)
governed/monitored.
Official
Dashboard
All Organisations
Aggregated / operational
Intended for dashboard visibility only (high-level).
Viewer
overview the
Item Developer
All Organisations
No student delivery data
Authoring workflow role; not intended for delivery/student data.
(authoring)
Item Approver
All Organisations
No student delivery data
Approval workflow role; not intended for delivery/student data.
under
(authoring)
Item Reviewer
All Organisations
No student delivery data
Workflow-only review role; not intended for delivery/student data.
(authoring)
Released
[UNCLASSIFIED]
