Managing user roles

Stairwell provides limited Role Based Access Control (RBAC) within the platform based upon 4 user roles:

// USER unlike ADMIN does not have the ability to create or manage other users, service accounts, or tokens but can do most other things in the UI.

// ADMIN is a user with elevated privileges and can create/manage other users, add environments, and update organizations. For the time being, ADMIN is the default user type.

// DISABLED users who no longer have access to Stairwell. Users are not deleted entirely to avoid dangling references to audited events.

// READ ONLY role has all of their permissions downgraded to read only.

Org Admins can manage user roles under Settings > Users by clicking the pencil icon next to the user they wish to manage

A submenu appears that allows the Admin to alter the role to one of the above choices.

📘

Forwarder Service Accounts

Forwarder Service Account users are a special user type that is tied to File Forwarder tokens. A couple important things you should know about them:

• Disabling a Forwarder Service Account that is linked to an active File Forwarder token will not disable the token(s) but will prevent the token from being able to register any future assets.
• Also, disabling the user that created the Forwarder Service Account will have no effect on the use of that token.