What a management user is permitted to do is determined by the roles to which the user is assigned. A system of includes and excludes based on the user membership determines to which role a user belongs.
A atribuição de um usuário para uma função é considerada se:
As exclusões têm precedência sobre as inclusões.