The Access Rights tab in the System > User Roles page determines what functions VSA users belonging to a selected role can perform. For example, access rights can include whether or not a user can open, add, edit or delete a particular record.
Note:Scopes determine whether a user can see certain user-created data structures displayed in the VSA. Roles determine access rights to the functions that act on those data structures.
A navigation tree provides access to each module, folder, item, and control in the VSA.
Click the or icons next to any item in the tree to display or hide child branches of that item..
Click Expand All to expand the entire tree.
Click Collapse All to collapse the entire tree.
Click Set Role Access Rights to change access rights for a role.
Checking or clearing any checkbox sets the same state for any child items.
Click Enable All to enable all items.
Click Disable All to disable all items.
Default Access Rights
When creating a new User Role, it has all access rights enabled by default except for VSA Server Management and other specialized functions that are reserved for Master role users.
When a new VSA module is installed (except for 3rd party applications installed via System > Server Management > License Manager > Third-Party tab), all existing User Roles will inherit access to its functions unless explicitly removed by a Master or System role user.
or 
icons next to any item in the tree to display or hide child branches of that item..