On this page: Review the built-in permissions available for each capability, so you can assign roles the precise rights your users need to work in Journey Optimizer.
Built-in permissions represent the different permissions that can be assigned to a Role to fine-tune your user access to Journey Optimizer. High-level permissions encompass low-level permissions, detailed on this page.
Generate content: access to AI Assistant in Journey Optimizer.
Manage brand kit: read, create, edit, and delete brands.
View operational insights: read-only access to system-level insights and monitoring dashboards.
Manage campaigns: read, create, edit, and delete campaigns.
Publish campaigns: right to publish campaigns.
View campaigns: read-only access to campaigns.
View campaigns report: read and edit campaign reports.
Manage alerts: enable/disable alerts for campaigns, messages and entitlements.
Manage file routing: read, create, edit, and delete file routing configurations.
Manage IP pools: read, create, edit, and delete ip pool.
Manage Key Registry: view, create, rotate, and revoke keys in the key registry.
Manage landing page settings: read, create, edit, and delete landing page settings.
Manage messages general settings: read, create, edit, and delete message general settings.
Manage messages presets: read, create, edit, and delete Channel configurations, API credentials and Webhooks.
Manage PTR records: read and edit PTR records.
Manage SMS settings: read, create, edit, and delete SMS settings.
Manage SMS subdomains: read, create, edit, and delete SMS subdomains.
Manage Seedlist: read, create, edit, and delete Seedlist.
Manage subdomains delegation: read, create, edit, and delete subdomain delegation.
Manage suppression rules: access read, create, edit and delete suppression rules.
Manage web subdomain: read, create, edit, and delete web subdomains.
View file routing: read-only access to file routing configurations.
View Key Registry: read-only access to the key registry listing and key details.
View messages general settings: read-only access to message general settings.
View messages presets: read-only access to messages presets.
View PTR records: read-only access to PTR records.
View suppression list: read and export local suppression list.
Manage custom dashboards: allows you to create a new dashboard or edit an existing dashboard.
Manage standard dashboards: allows you to create custom widgets and edit the widget schema through the Widget library.
View custom dashboards: read-only access to user defined dashboards.
View license usage dashboards: read-only access to the license usage dashboard.
View standard dashboards: read-only access to the Profiles, Destinations, and Audiences dashboards.
View datastream: read-only access to datastreams.
Manage data usage policies: read, create, edit, and delete data usage policies.
View data usage policies: read-only access for data usage policies belonging to your organization.
View privacy console: read-only access to privacy requests and privacy-related operations for your organization.
View user activity log: read-only access to view recorded audit logs of Platform activities.
View data lifecycle: read-only access for data lifecycle.
View sources: read-only access to available sources in the Catalog tab and authenticated sources in the Browse tab.
Manage datasets: read, create, edit, and delete datasets. Read-only access for schemas.
View datasets: read-only access for datasets and schemas.
Manage relationships: read, create, edit, and delete schema relationships.
Manage schemas: read, create, and edit Experience Data Model (XDM) schemas.
View schemas: read-only access to schemas.
Manage decisions: read, create, edit, and delete decisioning entities.
Manage offers: read, create, edit and delete all offers, components, read decisions and collections.
Manage ranking strategies: read, create, edit, and delete custom reports and use action features.
View Experience decisioning: read-only access to Experience Decisioning settings and configurations.
View decisions: read-only access to offers entities.
Activate segment without mapping: gives users the ability to activate audiences to existing destinations, without displaying the mapping step. Users can add and remove audiences in activation workflows, but cannot add or remove mapped attributes or identities.
Destination authoring: author destinations using Adobe Experience Platform Destination SDK.
Manage and activate dataset destination: read, create, edit, and disable dataset export flows. Ability to also activate data to active datasets that have been created.
Manage destinations: read, create, and delete destination activation flows and destination accounts.
View destinations: read-only access to available destinations in the Catalog tab and authenticated destinations in the Browse tab.
View Experiments: read-only access to experiments in the Experimentation accelerator.
Manage identity settings: read, create, and edit identity settings.
View identity namespaces: read-only access to identity namespaces.
View identity settings: read-only access to identity settings.
View identity graph: read-only access for identity graphs.
View IP warmup plans: read-only access to IP warmup plans.
View IP warmup reports: read and edit IP Warmup reports.
Simulate content: access to the Simulate content option for preview and proof.
Publish fragments: publish content fragments.
View frequency rules: read-only access to rules.
Manage journeys: read, create, edit, stop (live, test mode and dry run) and delete journeys. To access and manage journeys, combine this permission with View journeys events, data sources and actions.
Manage journeys events, data sources and actions: read, create, edit, and delete events, sources or actions.
Simulate Journeys: read, create and edit Simulation in Journeys.
Publish journeys: publish, start test mode, start dry run, pause and resume journeys.
View journeys: read-only access to jouneys.
View journeys events, data sources and actions: Read-only access to journey events, journey custom actions and journey data sources.
View journeys report: read and edit journeys report.
Manage messages preview and test: right to approve and publish messages when a policy is applied.
Publish messages: right to publish messages.
View messages: read-only access to messages.
View messages report: read and edit message reports.
Manage orchestrated campaigns admin: read, create, edit and delete links and reconciliations between Adobe Experience Platform Profiles and Relational store entities.
Publish orchestrated campaigns: publish Orchestrated campaigns. This permission is also required to trigger an Orchestrated campaign using a signal.
View orchestrated campaigns admin: read and edit links and reconciliations between Adobe Experience Platform Profiles and Relational store entities.
View orchestrated campaigns: read and edit Orchestrated campaigns.
View orchestrated campaigns report: read and edit Orchestrated campaigns report.
Export audience segments: export an evaluated audience segment to a dataset.
Import audience segments: import external audience segments into Adobe Experience Platform for use in segmentation and activation.
Manage merge policies: read, create, edit, and delete merge policies.
Manage profiles: read, create, edit, and delete datasets that are used for customer profiles. Read-only access to available profiles.
Manage segments: read, create, edit, and delete audience segment definitions.
View merge policies: read-only access to available merge policies.
View profiles: read-only access to available profiles.
View segments: read-only access to available audiences.
Manage query service integration: create, update, and delete non-expiring credentials for Query Service access.
Manage packages: read, create, edit, and delete packages.
Manage sandboxes: read, create, edit, and delete sandboxes.
Reset sandboxes: ability to reset a sandbox.
Share sandboxes: ability to share a sandbox.
View sandboxes: read-only access for sandboxes belonging to your organization.
Manage packages: read, create, edit, and delete packages.
Manage sandboxes: read, create, edit, and delete sandboxes.
View sandboxes: read-only access for sandboxes belonging to your organization.
Reset sandboxes: ability to reset a sandbox.
View Simulated Users: read-only access to simulated users.
Manage translation projects: read, create, edit, and delete translation projects.
Manage translation reviews: read, create, edit, and delete translation reviews.
Manage translation settings: read, create, edit, and delete translation settings.
Manage translation tasks: read, create, edit, and delete translation tasks.
View translation in house: read-only access for translation in house.
View translation projects: read-only access for translation projects.
View translation reviews: read-only access for translation reviews.
View translation tasks: read-only access for translation tasks.
This section contains structured knowledge intended to support interpretation, retrieval, and question answering related to this topic.
For complete understanding, this information should be combined with the documentation on this page. Neither source is intended to stand alone; the page describes the feature, while this section provides additional context that helps disambiguate terminology, intent, applicability, and constraints.
- TL;DR: This page is a comprehensive reference of every built-in permission in Journey Optimizer, grouped by capability area, so administrators can identify exactly which rights to include when building or auditing a role.
Intents:
- Look up all available permissions for a given capability area (Journeys, Campaigns, Decision management, AI assistant, etc.)
- Identify the correct permission to add to a custom or built-in role
- Distinguish between Manage and View permissions per resource
- Find permissions for AI Assistant, orchestrated campaigns, and experience decisioning
- Identify which permissions cover journey execution modes (test mode, dry run, simulation)
Glossary:
- Built-in permissions: Pre-defined unitary rights assignable to a role to control access to features and objects in Journey Optimizer; high-level permissions encompass low-level permissions (product-specific)
- Capability: A functional area grouping related permissions (e.g., Journeys, Campaigns, Decision management, AI assistant) (product-specific)
- Test mode: A journey execution mode; the Publish journeys permission includes the ability to start test mode (product-specific)
- Dry run: A journey execution mode; the Publish journeys permission includes the ability to start dry run (product-specific)
- Simulation: A separate journey capability; the Simulate Journeys permission covers read, create, and edit of Simulation in Journeys (product-specific)
Terminology:
- Canonical name: Built-in permissions — variants: out-of-the-box permissions, OOTB permissions
- Do not confuse: “Manage journeys” (includes stop in live, test mode, and dry run) ≠ “Publish journeys” (includes publish, start test mode, start dry run, pause, and resume)
- Do not confuse: “Simulate Journeys” (permission to read, create, and edit Simulation in Journeys) ≠ “Simulate content” (access to the Simulate content option for message preview and proof)
- Do not confuse: “Generate content” (AI Assistant access in Journey Optimizer) ≠ “Enable AI Assistant” (enable or access AI-powered campaign and audience features)
- Do not confuse: “Test mode” (journey execution mode controlled via Publish journeys permission) ≠ “Dry run” (separate journey execution mode also controlled via Publish journeys permission) ≠ “Simulation” (separate capability via Simulate Journeys permission)
- Do not confuse: “Manage decisions” (CRUD on decisioning entities) ≠ “Manage Experience decisioning” (CRUD on Experience Decisioning settings and decision policies)
FAQ:
- Q: Which permission is required to use AI Assistant for content generation? — Generate content (under the AI assistant capability).
- Q: What permission lets a user export the suppression list? — Export suppression list (under Channel configurations).
- Q: Which permission grants read-only access to journeys? — View journeys (under the Journeys capability).
- Q: What permission is needed to publish orchestrated campaigns? — Publish orchestrated campaigns (under Orchestrated campaigns); this permission is also required to trigger an Orchestrated campaign using a signal.
- Q: What does the Simulate Journeys permission cover? — Read, create, and edit of Simulation in Journeys.