The content on this page has been updated to reflect the behavior seen in the open beta version of strongDM's Admin UI.
Roles in strongDM are the method of providing Users access to resources. A Role is a collection of permissions that are granted to the Users that are assigned to that Role.
To assign Users to Roles in the Admin UI, you can simply go to the User in question, open the Roles tab, and search your Roles list, and add them. In the CLI, you can use the
sdm admin users command. Any given user may be assigned 20 roles at maximum.
In order to add permissions to a Role, you use Access Rules. Access Rules provide two methods by which to assign access permissions to a Role. Static Access Rules are manually assigned permissions. Dynamic Access Rules provide permissions for resources based on tags and resource types chosen.
Users in the Suspended role cannot log in or access any datasources or servers.