Permission Levels

Permission Levels
Permission Levels

You can delegate various levels of administrative permissions to users within your account, including Account Administrators, Database Administrators, Team Leaders, and/or Users. You do not need to have all administrative types set up:

  • Account Administrators have complete administrative access to your account. Only Account Administrators can create roles and grant access to datasources and servers.

  • Database Administrators can configure and manage resources (datasources, servers, websites, clusters, and clouds).

  • Team Leaders can manage users within a particular role. This role is designed for managers who are in charge of a team but don't necessarily control the infrastructure they use. Team Leaders can invite new users exclusively to the role they manage, and those users will inherit the same access as the Team Leader.

  • User is the default for anyone invited to the account. Users can query and access the datasources and servers to which they have been granted access.

ActionAccount AdministratorDatabase AdministratorTeam LeaderUser
Access datasources, servers, websites, clusters, and clouds
Audit activities, queries, and ssh captures
Audit account configuration
Grant administrative access
Grant access to datasources, servers, websites, clusters, and clouds
Invite, manage, and suspend users
Manage admin tokens
Manage service accounts
Manage datasources, servers, websites, clusters, and clouds
Manage relays and gateways
Update account settings
Composite Roles