Access Control
Access control in Atlan defines who can sign in, what they can see, and how their activity is tracked, across three layers: identity & access (authentication, users, groups, roles), permissions (personas, purposes, connection access, visibility), and audit (event and query logs). Use this section to set up SSO, onboard users, scope data access, and monitor usage.
- Identity & access. Authentication, SSO/SCIM, users, groups, and roles.
- Permissions. Personas, purposes, connection access, and visibility controls.
- Audit. Event and access logs for accountable, compliant usage.
Set up authentication
Configure SSO, SCIM, and how people sign in to your workspace.
Add and manage users
Invite people, assign roles, and offboard them when they leave.
Create and sync groups
Bundle users into teams to assign access in bulk, manually or from your IdP.
Scope team access
Use personas to give each team a curated catalog view and its own policies.
Protect sensitive data
Use purposes to apply policies and masking to tagged assets such as PII.
Control connection access
Manage connection admins and let users query with their own credentials.