Role Based Access

Configure multiple roles and privileges to meet your security needs. Integrate OpenSpecimen with your local LDAP to allow seamless integration yet secure environment. 

The following table summarizes different privileges available in OpenSpecimen Suite and the default privileges with which each role is associated. You can customize these through the OpenSpecimen application by setting users with specific privileges.




Default Role

User Provisioning

Privilege to add / edit users and their privileges.


General Administration

Privilege to add/edit Institutions, Departments, Cancer Research Groups, Sites, Storage types, Specimen Array types, Bio-Hazards, Define Annotation

Super Administrator

Storage Administration

Privilege to add/edit Storage Containers


Protocol Administration

Privilege to add/edit Collection and Distribution Protocols and assign privileges per protocol



Privilege to PHI Access, add/edit Participants, Specimen Collection Group, Specimens

Administrator, Supervisor


Privilege to:

  • Place an order under any Distribution Protocol.
  • Distribute the specimens stored in the site to which the user has access.
  • Process the orders placed based on the Surgical Pathology Report belonging to the Collection Protocol to which user has access

Administrator, Supervisor, Technician

Specimen Processing

Privilege to add/edit Specimens, Specimen events, Specimen Array, Aliquot Specimens, and Derive Specimens

Administrator, Supervisor, Technician

Read Denied

Privilege to deny READ on a Collection Protocol

Has to be explicitly given by selecting the Role of Scientist. By default, all users have access to READ all non-PHI data.


The role Super Administrator has all the privileges within OpenSpecimen Suite. Other roles are associated to each site. Also, customized roles with required privileges can be created.