Security governance
Access Control
Configure role-based and attribute-based access control
Fine-grained access control ensures users can only access the resources and perform the actions appropriate for their role.
Role-Based Access Control (RBAC)
Built-in Roles
Admin
Full platform access:
- All resources and settings
- User management
- Billing and subscriptions
Developer
Build and deploy capabilities:
- Create/edit agents and workflows
- Access development environments
- Deploy to staging
Operator
Production management:
- Deploy to production
- Monitor and troubleshoot
- View analytics
Viewer
Read-only access:
- View agents and workflows
- Access dashboards
- View execution history
Custom Roles
Create roles tailored to your organization:
- Navigate to Settings > Roles
- Click Create Role
- Select permissions
- Assign to users
Attribute-Based Access Control (ABAC)
Control access based on:
- Environment - Dev, staging, production
- Project - Project-level isolation
- Tags - Custom resource tags
- Time - Time-based access windows
Resource Permissions
Agent Permissions
- View agent configuration
- Edit agent settings
- Execute agent
- Delete agent
Workflow Permissions
- View workflow
- Edit workflow
- Deploy workflow
- View execution history
Connection Permissions
- View connections
- Create connections
- Use connections in workflows
- Delete connections
Best Practices
- Principle of Least Privilege - Grant minimum required access
- Use Groups - Manage permissions at group level
- Regular Reviews - Audit access periodically
- Separate Environments - Different access for dev vs prod