Setting up access rights to the 1C-Bitrix administrative section

Our company is engaged in the development, support and maintenance of Bitrix and Bitrix24 solutions of any complexity. From simple one-page sites to complex online stores, CRM systems with 1C and telephony integration. The experience of developers is confirmed by certificates from the vendor.

8+Years of workmore info 900+Completed projectsmore info 100+In house employeesmore info 19+Partnersmore info

Showing 1 of 1 servicesAll 1626 services

Simple

~1 business day

FAQ

Our competencies:

Free consultation

Book a free consultation if you have any questions. A dedicated specialist will advise you.

Cost calculation

If you know what exactly you need to develop, or you already have a ready-made technical task.

Development stages

Latest works

B2B ADVANCE company website development
1175
Website development for FIXPER company
811
Development based on Bitrix, Bitrix24, 1C for the company Development of an Online Appointment Booking Widget for a Medical Center
564
Development based on 1C Enterprise for MIRSANBEL
747
Website development on CRM Bitrix24 for DOLBIMBY
655
Development based on Bitrix24 for the company TECHNOTORGKOMPLEKS
976

Show more works

Configuring Access Rights to the Administrative Section in 1C-Bitrix

Typical problem: a content manager logs into the administrative section and sees all modules, including server settings, backup, and license management. Or the opposite — a sales manager cannot open the required CRM section due to lack of permissions. Both issues are solved by configuring access to the administrative section.

How Permissions Work in the Administrative Part

Access to the administrative section in Bitrix is controlled at several levels:

User groups — a user must belong to a group with permission to access a specific module
Module permissions — each module has its own set of access levels
Site section permissions — access control to public and administrative pages via b_group_section

Database tables: b_user_group (user and group relationship), b_group (groups), module permissions stored in b_option with key format access_*.

Module Access Levels

For each module, available levels are: D (no access), R (read), W (write), X (full access). Configured via:

Settings → Users → User Groups → [group] → Access to Modules

Key modules and recommended levels for a typical content manager:

Module	Module ID	Recommended Level
Information Blocks	`iblock`	W
E-commerce	`sale`	W
Media Library	`fileman`	W
Structure Management	`main`	R
System Settings	`main` (admin)	D
Backup	`backup`	D

Permissions for Specific Pages and Sections

In addition to module permissions, you can restrict access to specific administrative pages. This is done via file system permissions for the /bitrix/admin/ folder:

Desktop → [right-click on folder] → Access Rights

Or programmatically via CComponentEngine::SetComponentPath and component permissions.

Administrative Access Without Administrator Group

To grant access to the administrative section without adding to the Administrators group:

Create a separate group (e.g., "Content Managers")
In group settings, enable "Access to Administrative Section" — flag ADMIN_SECTION in b_group table
Assign permissions to required modules

Without the ADMIN_SECTION flag, a user cannot access /bitrix/admin/, even with permissions for individual modules.

Permissions via API

Checking permissions in code:

// Check user permission for module
$APPLICATION->GetGroupRight('iblock'); // returns level: D/R/W/X

// Check if current user is an administrator
$USER->IsAdmin();

// Check membership in group
$USER->IsInGroup(5); // 5 - group ID

Execution Timeline

Configuring permissions for 2–3 user groups with typical roles — 2–3 hours. Designing a complex role model with custom restrictions at page and component level — up to 1 working day.

1C Bitrix presentation 1C Bitrix24 presentation 1C Enterprise presentation