You can grant a range of permissions, which are organized into several groups: Overall, Slave, Job, Run,
View and SCM. Most of the permissions are fairly obvious, but some need a little more explanation.
The individual permissions are as follows:
Overall
This group covers basic system-wide permissions:Administer
Lets a user make system-wide configuration changes and other sensitive operations, for
example in the main Jenkins configuration pages. This should be reserved for the Jenkins
administrator.Read
This permission provides read-only access to virtually all of the pages in Jenkins. If you
want anonymous users to be able to view build jobs freely, but not to be able to modify or
start them, grant the Read role to the special “anonymous” user. If not, simply revoke this
permission for the Anonymous user. And if you want all authenticated users to be able to
see build jobs, then add a special user called “authenticated”, and grant this user Overall/
Read permission.Slave
This group covers permissions about remote build nodes, or slaves:Configure
Create and configure new build nodes.Delete
Delete build nodes.Job
This group covers job-related permissions:Create
Create a new build job.Delete
Delete an existing build job.Configure
Update the configuration of an existing build jobs.Read
View build jobs.Build
Start a build job.