Members (User Management)

Invite team members to your organization and assign them relevant roles.

RudderStack’s user management feature lets you easily collaborate with other members of your organization. It provides different options to manage users and their permissions in your RudderStack organization.

Invite users to organization

warning
Only an Org AdminAn Org Admin is an invited user with full access to the organization. can invite other members to the organization.
  1. Go to Settings > Organization. Go to the Members tab and click the Invite member button:
Invite member
  1. Enter the member’s Email address and select Organization Role from the dropdown. Click Next to proceed.
info
See Role definitions for more information on the Admin and Member roles.
Set email address and org role
  1. If you have selected the Member role, you can assign permissions for specific features like Connections and Transformations.
Workspace role settings
  1. Click Send invite. The user will be automatically added to the organization once they accept the invitation.

Role definitions

Term
LevelDefinition
Organization rolesOrganizationHighest abstraction level that determines if a user has a full access or customized access to specific resources.

Example: Org Admin, Org Member
Resource rolesWorkspacePredefined access to specific resources. A user can have multiple resource roles that grant access to all or some resources.

Example: Connections Admin/Editor/Viewer, Transformations Admin

Role permissions

The following sections detail the access policies set for organization-level and resource-level roles.

warning
All role permissions are packaged differently in RudderStack Cloud plans. See Plan-wise features for more information.

Organization roles

NameAccess policyRestrictions
Org AdminFull organization access.-
Org MemberDependent on resource roles.Dependent on resource roles.

Resource roles

Connections

NameWhat user can doWhat user cannot do
Connections Admin
  • Create and delete sources and destinations.
  • Create and delete models.
  • Connect and disconnect sources from destinations.
  • Edit source and destination configurations.
  • Connect or disconnect transformations.
  • Connect or disconnect models.
  • Link or unlink tracking plans.
  • CRUD operations on any resource for which there is no specific role (for example, Audience, Profiles).
-
Connections Editor
  • Connect and disconnect sources from destinations.
  • Edit source and destination configurations.
  • Connect or disconnect transformations.
  • Connect or disconnect models.
  • Link or unlink tracking plans.
Create and delete sources and destinations.

Transformations

NameWhat user can doWhat user cannot do
Transformations AdminCreate, edit, or delete transformations.Connect and disconnect transformations

Plan-wise features

FeatureFreeStarterGrowthEnterprise
Organization roles
  • Org Admin
  • Org Member
  • Org Admin
  • Org Member
  • Org Admin
  • Org Member
  • Org Admin
  • Org Member
Resource rolesNone
Assign user access to PIINoNoNoYes
info

Summary:

  • All RudderStack Cloud plans have two organization roles - Org Admin and Org Member.
  • RudderStack Cloud’s Free plan does not have any granular, resource-level roles. It only has two roles:
    • Org Admin: Full organization access.
    • Org Member: View-only access.
  • Resource roles are available in paid plans and they expand by tier.
  • The PII controls feature is available only in the Enterprise plan.

Member limit

PlanMember limit
Free10
Starter10
GrowthUnlimited
EnterpriseUnlimited

Manage users

Go to Settings > Organization and click the Members tab. You will see a list of all members in the organization, their role, access policy, and current status.

Manage users

Manage access policy

Members in your organization can have varying levels of access to RudderStack features and resources based on their role and the access policies you define for them.

Given these controls might need to be changed from time to time, RudderStack lets you easily edit your members’ access policies.

warning
Only Org AdminAn Org Admin is an invited user with full access to the organization. can edit access policies of other members in the organization. This includes other Org Admins too.
  1. In the Members tab, click the meatballs menu next to the user and select Edit access policy:
Edit access policy
  1. Click the edit icon to change the member’s organization role or resource roles and permissions as required.
warning
You need to enter your password to confirm any changes.
Edit user role and permissions

Note that:

  • When you upgrade a user with Member role to Admin, they will automatically get full edit access to all the resources.

  • When you downgrade a user with Admin role to Member, RudderStack resets all access permissions to read-only. You need to manually set the permissions for each resource and click Save to update the access policy.

Edit user role to Member

Remove user

To remove a user from the organization, click the meatballs menu next to the user and select Remove member. Enter your password to confirm.

warning
Only the Org AdminAn Org Admin is an invited user with full access to the organization. can remove other users (Member or Admin) from the organization.
Edit access policy

Migration and mapping

If you have added users to your organization with the previous role permissions, RudderStack will automatically migrate them into the new roles and map the granular resource-level permissions as applicable.

Previous organization roleNew organization roleNew resource roles
AdminOrg AdminNot applicable, full access already.
Read-Write
  • Free plan: Org Member
  • Paid plans: Org Member
See Plan-wise features for more information.
Read-OnlyOrg MemberNone – view-only access by default.

Questions? Contact us by email or on Slack