FinalBuilder Server allows you to restrict a users access or functionality to certain areas by the means of roles and permissions.
The Administrator role is read-only. It cannot be renamed, modified or deleted. There must be one user assigned to the Administrator role at all times.
The Standard role is added by default during installation, but it may be deleted, renamed or modified.
A user should be assigned at least one role and may have multiple roles. If a user doesn't have any role assigned, they won't have permission to perform the vast majority of functions.
If a role is marked as "Default", then it will be added automatically to any new users defined (it can be easily removed if not required though).
The permissions that roles grant are additive - that is, if a user has more than one role assigned, then they have permission to perform any action that is allowed by either or both of the roles. You cannot "ungrant" or "dissallow" a permission from a role, you'll need to create an alternative role that doesn't grant that permission and make sure that the other roles the user is assigned also don't grant that permission.