A tool for administering users of a security system is provided. The security system includes a storage component stored on a computer readable medium, a centrally located graphical user interface stored on a computer readable medium, and an engine stored on a computer readable medium. The storage component maintains roles data that includes an authorization component and an application component, wherein the application component includes at least one role defined by a third party application. The centrally located graphical user interface manages the application component and the authorization component. The engine communicates with the storage component via a security system application programming interface, uses the authorization component to determine whether to grant access to the third party application, and communicates the application component to the third party application which uses the application component to determine a level of access within the third party application.