RudderStack's user management feature lets you manage users and their permissions in your RudderStack workspace. It lets you easily collaborate with other members of your organization.

Inviting users to your workspace

To invite a member to your RudderStack workspace, follow these steps:

  1. Go to Settings > Members and click the Invite Teammate button, as shown:
Invite teammates option
  1. Enter the member's Email and select an appropriate role from the dropdown.
Refer to the Role permissions section below for more information on the Read-Only, Read-Write, and Admin roles.
  1. Finally, click Invite.
Your teammate will be automatically added to the workspace once they accept the invite.

Role permissions

You can assign any of the following three roles to the member you want to invite to your workspace:

  • Read-Only
  • Read-Write
  • Admin

The following sections list the default permissions associated with each role.

You can also set granular access controls and lock down access to specific RudderStack objects and features to a select list of members in your workspace. For more information, refer to the Permissions Management guide.

Read-Only

This user role has the following permissions:

FeatureViewAddModifyDelete
SourcesYesNoNoNo
DestinationsYesNoNoNo
ConnectionsYesNoNoNo
Live EventsYes---
TransformationsYesNoNoNo
Audit LogsNo---
Tracking PlansYesNoNoNo
ModelsYesNoNoNo

The members with read-only user permissions can:

  • View the connection settings for all the destinations. However, they do not have access to view secrets like the access keys.
  • View any secrets in the transformation code like API keys.

Read-Write

A read-write user has all the permissions of a read-only user in addition to modifying the key workspace features and options listed below:

FeatureViewAddModifyDelete
SourcesYesYesYesYes
DestinationsYesYesYesYes
ConnectionsYesYesYesYes
Live EventsYes---
TransformationsYesYesYesYes
Audit LogsYes---
Tracking PlansYesYesYesYes
ModelsYesYesYesYes

Admin

This user role has complete access to the RudderStack workspace, including all the features in the current plan:

FeatureViewAddModifyDelete
SourcesYesYesYesYes
DestinationsYesYesYesYes
ConnectionsYesYesYesYes
Live EventsYes---
TransformationsYesYesYesYes
Audit LogsYes---
Tracking PlansYesYesYesYes
ModelsYesYesYesYes
The Admin role also has some additional permissions related to the configuration of the workspace settings, including managing users, modifying user permissions, enforcing MFA(multi-factor authentication), and more. This role also has the required permissions to set granular access controls for certain business-critical objects and limit PII access to certain users.

Contact us

For more information on the topics covered on this page, email us or start a conversation in our Slack community.

Contents