Role-Based Access Control
Granular permissions system.
Built-in Roles
| Role | Description |
|---|---|
| Admin | Full system access |
| Manager | Manage agents, policies, users |
| Technician | View and operate agents |
| Viewer | Read-only access |
Permissions
Agent Permissions
| Permission | Description |
|---|---|
agents:read | View agent list and details |
agents:write | Modify agent settings |
agents:delete | Remove agents |
agents:execute | Run commands and scripts |
Policy Permissions
| Permission | Description |
|---|---|
policies:read | View policies |
policies:write | Create/modify policies |
policies:delete | Delete policies |
policies:execute | Run policies |
User Permissions
| Permission | Description |
|---|---|
users:read | View users |
users:write | Create/modify users |
users:delete | Delete users |
Folder-Based Access
Restrict access to specific folders:
- Create folder structure
- Assign agents to folders
- Grant folder access to users
Example:
- User "tech1" has access to "Production" folder only
- User "tech2" has access to "Development" folder only
Creating Custom Roles
- Navigate to Admin → Roles
- Click Create Role
- Name the role
- Select permissions
- Save
Assigning Roles
- Navigate to Admin → Users
- Select user
- Click Assign Role
- Choose role(s)
- Optionally limit to specific folders