Enhancing security, collaboration, and control for Enterprise teams
Role | Capabilities |
---|---|
Owner | Full control of organization, billing, security, users and all projects |
Admin | Manage users, projects, organization-level API keys and OAuths |
Member | Access only assigned projects, can create private projects and assets (agents, tools, knowledge) |
Viewer | View-only access to agent and tool audit logs, usage data and compliance reports |
Permission | Owner | Admin | Member | Viewer |
---|---|---|---|---|
Manage billing | ✅ | ❌ | ❌ | ❌ |
Manage organization settings (name, logo, domain etc.) | ✅ | ✅ | ❌ | ❌ |
Manage organization users | ✅ | ✅ | ❌ | ❌ |
Manage API keys & OAuths (Org-level connections) | ✅ | ✅ | ❌ | ❌ |
View global audit logs | ✅ | ✅ | ❌ | ❌ |
View all projects and agents | ✅ | ✅ | ❌ | ❌ |
Delete any asset | ✅ | ✅ | ❌ | ❌ |
Edit project roles | ✅ | ✅ | ❌ | ❌ |
View credit information | ✅ | ✅ | ❌ | ❌ |
Create projects | ✅ | ✅ | ✅ | ❌ |
View organization members / admins | ✅ | ✅ | ✅ | ✅ |
Role | Capabilities |
---|---|
Admin | Manage users, agents, tools, knowledge and project-level integrations. Can create assets |
Editor | Can edit and create assets, does not manage users |
Member | Use shared assets, provide inputs and view outputs. Can create assets, private by default. |
Viewer | View agents, tools, and knowledge outputs only, cannot run or edit anything |
Permission | Admin | Editor | Member | Viewer |
---|---|---|---|---|
Delete project | ✅ | ❌ | ❌ | ❌ |
Assign project roles to users | ✅ | ❌ | ❌ | ❌ |
Delete agents | ✅ | ✅ | ❌ | ❌ |
View all assets by default | ✅ | ✅ | ❌ | ❌ |
Edit/run assets they did not create | ✅ | ✅ | ❌ | ❌ |
View project activity logs | ✅ | ✅ | ❌ | ❌ |
Manage project-level API keys & OAuths | ✅ | ✅ | ❌ | ❌ |
Create assets | ✅ | ✅ | ✅ | ❌ |
View Project | ✅ | ✅ | ✅ | ✅ |
Role | Capabilities |
---|---|
Admin | Manage asset configuration, tools, knowledge and assign asset-level users |
Member | Use asset only, provide inputs and view outputs |
Viewer | View asset configuration and outputs only, cannot run or edit anything |
Permission | Admin | Member | Viewer |
---|---|---|---|
Edit asset | ✅ | ❌ | ❌ |
Delete asset | ✅ | ❌ | ❌ |
Assign roles on asset | ✅ | ❌ | ❌ |
Assign auth per tool | ✅ | ❌ | ❌ |
Enable cloning/sharing of asset | ✅ | ❌ | ❌ |
Run asset (if executable e.g. agent) | ✅ | ✅ | ❌ |
View asset configuration | ✅ | ✅ | ✅ |
View asset outputs | ✅ | ✅ | ✅ |
View asset audit logs | ✅ | ✅ | ✅ |
Can I access role-based access controls without upgrading to Enterprise?
I'm on an Enterprise subscription but do not have access to this feature yet. How do I get access?