Each user is assigned a single role, which comes with its associated permissions.
Besides the two special roles explained below, custom roles can be created and assigned to users to enable varying levels of access control.
This role has all permissions enabled.
This role has all permissions disabled. Users created through SSO/LDAP authentication are automatically assigned this role.
Permits configuration of services.
Website Monitoring configuration
Permits configuration of website monitoring functionality.
Permits inviting, modifying and removing user accounts.
Access role configuration
Permits configuration of access roles and permissions for all users.
Agent download and agent key visibility
Permits access to agent and configuration.
Access to license usage
Permits access to license usage information.
Access to on prem license usage
Permits access to on prem license usage information.
Configuration of integration
Permits creation and configuration of integrations for use in alerting
Configuration of custom alerts
Permits creation and configuration of custom alerts and associated integrations
Configuration of API tokens
Permits creation and configuration of API tokens
Configuration of agent mode
Permits configuration of agent mode through the UI
Access to audit log
Permits access to audit log for all users
Configuration of agents
Permits agent configuration of all agents through the UI
Configuration of authentication methods
Permits configuration of team authentication methods (eg. 2FA/SSO)
To invite users, go to Settings → Access Control → Users and Invite a new user.
The invited user will then receive an email to complete account setup.
Activity across users is logged to the audit log.