To create and manage (that is, view, edit, and delete) a top-level organization (that is, an organization that is a sibling of the Default Organization), you must belong to a role that has the Manage Organizations system-level permission. By default, users with the CentraSite Administrator role have this permission, and can assign this permission to other roles. Besides allowing you to create organizations at the top level, the Manage Organizations permission enables you to manage all organizations (including the Default Organization). This permission allows you to create, view, edit, and delete virtually any object within any organization.

To create child organizations from an organization, you must belong to a role that has either the Manage Organizations permission for the organization in which you want to create the child organization or that permission for one of that organization's antecedents. For example, if you create an organizational structure that looks like the one below, you can create a child organization under the Business Systems organization if you have the Manage Organizations permission for the Business Systems organization or for the MIS organization.

When you have Manage Organizations permission for an organization, you can edit an organization's attributes and manage that organization's registry objects (including all of its children and their registry objects). In effect, the Manage Organizations permission allows you to create, view, edit, and delete virtually any object within an organization or its descendants. By default, users in the Organization Administrator role for an organization have this permission, although an administrator can assign this permission to other roles.