The Admins and Permissions section of the Trio platform allows you to centrally manage all administrative users and their access privileges. It is divided into two core tabs:
All company admins to view and manage individual admin accounts.
Roles – to configure permission templates and apply them across users.
This setup offers flexibility for organizations to delegate access while maintaining control and visibility.
All Company Admins
The All Company Admins view provides a comprehensive table of all current administrative users. Each row represents one admin and offers the following key information:
Name & Email Address: Used for identification.
Assigned Role: The permissions template applied to this admin (e.g., IT Admin, Super Admin).
State: Indicates whether the account is Active or Suspended.
Last Login: Helps track activity and spot inactive accounts.
MFA Status: Displays whether Multi-Factor Authentication is:
✅ Enabled (e.g., TOTP or Email OTP)
⌛ Not Set Up
❌ Not Enabled
Creation Date: The timestamp when the admin was added.
This view also includes controls to change an admin’s role, monitor their security compliance (e.g., MFA usage), and suspend or reactivate accounts if needed.
Understanding Role Permissions
When you click into a role's details, you’ll find a structured list of permissions broken into operational categories. These are all checkbox-based and can be toggled individually.
1. Departments
Control over how admins can interact with organizational departments:
View
Edit
Delete
2. Employees
Manage visibility and access to employee records:
View
Edit
Archive
3. Profiles (Policies)
Split between Security and Configuration profiles:
View: Allows visibility into profiles.
Edit: Enables editing of settings.
Assign: Grants rights to apply the profile to users or devices.
4. Software Inventory
Manage visibility and actions on software installed across various platforms:
Android, iOS, macOS, Windows, and Enterprise
Each platform includes permissions to View, Edit, or Delete software entries
Admins can be granted read-only access, full control, or a level of access in between, depending on their role within the organization.
Assigning Admins to Roles
To assign users to a role, click Manage people from the role’s options menu. This opens a selection view where you can:
See all admins along with their email, state, and login status
Use filters such as state, last login, or creation date
Select one or more users to apply the role to
Save changes to update access instantly
This allows fast, large-scale permission changes without reconfiguring each user individually.
Creating and Editing Roles
You can also create custom roles tailored to your company’s workflows:
Click + Add new
Provide a role name and (optionally) a description
Configure permissions by category
Save the role and assign it to users
You may edit or rename existing roles at any time. Customized roles are clearly labeled to differentiate them from Trio's default templates.
Security and Best Practices
To maintain a secure and efficient admin environment, consider the following:
Enforce MFA for all admin accounts. The platform displays MFA status clearly to identify compliance gaps.
Limit Super Admin access to only critical personnel. Use narrower roles (like Group Admin or App Manager) for others.
Audit login history regularly. Admins who haven’t logged in for a while might no longer need access.
Suspend unused or high-risk accounts instead of deleting them, so you can retain their history but block access.
By aligning roles with job responsibilities and maintaining strong authentication, you reduce risk while empowering teams to work independently.