Platform
Access Roles

Access Management Overview

Access management and permissions in Qubitro are simplified through distinct roles, ensuring specific levels of control and security within project and dashboard collaborations, and organization-wide settings.

Collaborator Roles

Available to users on the Scale or Enterprise plans.

Read-Only

  • Description: Users can view resources (devices, functions, device data, etc.) but cannot modify or delete them.
  • Permissions:
    • View resources
    • No modification or deletion rights

Read/Write

  • Description: Allows creation and modification of resources (devices, functions, device data, etc.), but not deletion.
  • Permissions:
    • Create and modify resources
    • No deletion rights

Admin

  • Description: Grants full authority to manage, modify, and delete resources (devices, functions, device data, etc.) and access to access management settings.
  • Permissions:
    • Full control over creation, modification, and deletion
    • Access to access management in projects/dashboards
    • Manage all resources

Collaborator Roles Reference

Resources refers to projects, devices, functions, device data, etc.
FeatureRead OnlyRead/WriteAdmin
View ResourcesYesYesYes
Create ResourcesNoYesYes
Modify ResourcesNoYesYes
Delete ResourcesNoNoYes
Access Management in Projects/DashboardsNoNoYes

Organization Member Roles

Exclusive to Enterprise plan accounts.

Read-Only

  • Description: View-only access to all organizational resources (devices, functions, device data, etc.).
  • Permissions:
    • View organizational resources
    • No modification or deletion

Read/Write

  • Description: Can create and modify organizational resources, excluding deletion and certain settings.
  • Permissions:
    • Create and modify organizational resources
    • No deletion or access to sensitive settings
    • No access to groups and members settings within the organization

Billing Admin

  • Description: Specific to managing billing and invoice settings.
  • Permissions:
    • Access only to billing and invoice tabs
    • No access to other organizational settings or resources

Admin

  • Description: Extensive control within the organization and access to groups and members settings.
  • Permissions:
    • Manage projects, dashboards, and similar resources
    • Access to groups and members settings within the organization
    • Limited access to certain sensitive settings

Super Admin

  • Description: Unrestricted access to all organizational aspects, including groups and members settings.
  • Permissions:
    • Full control over all features, settings, and resources
    • Access to groups and members settings within the organization
    • Comprehensive management capabilities

Organization Member Roles Reference

Org. Resources refer to organizational resources
FeatureRead OnlyRead/WriteBilling AdminAdminSuper Admin
View Org. ResourcesYesYesNoYesYes
Create Org. ResourcesNoYesNoYesYes
Modify Org. ResourcesNoYesNoYesYes
Delete Org. ResourcesNoNoNoLimitedYes
Access Billing and Invoice TabsNoNoYesNoYes
Access to Groups and Members SettingsNoNoNoYesYes

Best Practices

  • Principle of Least Privilege:

    • Assign roles based on the minimum access needed to perform tasks efficiently.
  • Regular Reviews:

    • Conduct periodic reviews to ensure role assignments align with current organizational needs and security protocols.
  • Temporary Access:

    • Grant higher-level access temporarily for specific tasks and revert to original permissions after task completion.
  • Emergency Protocols:

    • Have emergency protocols in place to quickly address security breaches or misuse of access privileges.

Ready to accelerate>>> INNOVATIONat your organization?

We’d love to talk about how we can work together.