The main idea for Role Based Access Control (RBAC) is to be able to assign privileges to roles and assign roles to users. With roles you can have more granular control over what data users can access and what actions users can take within your system.
We provide four system defined roles out-of-the-box with specific user privileges. These role permissions cannot be modified or customized in any way.
A user can be assigned a role via Self-service Signup, SSO Signup or by or by inviting a team member:
The first user that signs up from a particular domain is automatically assigned the role of Administrator.
All logins (users) signing in with SSO are defaulted to the role of an Analyst.
Only users with Administrator role can invite team members to the account by entering the email address of the user they would like to invite. Those users will have different privileges depending on the assigned role.
To invite a new team member, go to Settings -> Users -> Invite Team Member
Once there, you can enter the email address of the user you would like to invite, choose a role from the options, and save.
As an Administrator you can also change roles or delete a team member from Users table.
To assign a new role, select a user from the table, click edit, choose a different role, and save.
Updated 3 days ago