What are user roles?
Overview
All users in Atlan need to be assigned one of the following predefined roles.
danger
User roles play a relatively small part in determining access to metadata and data. For more details on all the possible access control mechanisms, see How do I control access to metadata and data?
Admin
An admin user can manage Atlan:
- Set up integrations with external collaboration tools
- Set up data connections and run workflows
- Manage users, groups, tags, and access policies
- Maintain extensions to the metadata
- Turn experimental features on and off
In addition, the admin user can do everything the member user can do.
There are two optional sub roles within the admin to delegate adminitration for workflows or governance without full platform level admin access.
These workflow and governance sub roles can be enabled by admins.
Member
A member user can discover, maintain, and query assets:
- Find and view metadata for assets
- Update metadata for specific assets (via personas and policies) - for example, attach tags
- Suggest metadata updates for all other assets
- Approve or reject suggested metadata changes (via personas and policies)
- Preview sample data and query data in specific assets
Guest
A guest user can only discover assets:
- Find and view metadata for assets
- Suggest updates to metadata for any assets (if enabled from the admin center)
- Never update metadata for any assets
- Preview sample data or query data in specific assets (via personas and policies)
Detailed permissions
To understand the table of permissions, note the following:
- The permission to manage allows a user to create, read, update, and delete objects.
- ✅ - capability included.
- ➕ - capability will be a paid addition, reach out to your customer success manager for more information.
- Basic metadata - read asset name, description, certificates, and more. Permission to act may be limited.
| Permission | Admin | Member | Guest |
|---|---|---|---|
| Manage tags | ✅ | ||
| Manage custom metadata and options | ✅ | ||
| Manage users and groups | ✅ | ||
| Manage access (personas, purposes, policies) | ✅ | ||
| Edit the organization's profile | ✅ | ||
| Create API tokens | ✅ | ||
| Set up SSO | ✅ | ||
| Create workflows | ✅ | ||
| Approve or reject suggested metadata changes | ✅ | ✅ | |
| Manage glossaries | ✅ | ||
| Manage categories and terms | ✅ | ✅ | |
| Bulk upload terms (via glossary policies) | ✅ | ✅ | |
| Preview sample data | ✅ | ✅ | ✅ |
| Suggest changes to metadata | ✅ | ✅ | ✅ |
| Edit metadata (via personas and policies) | ✅ | ✅ | |
| View basic metadata for assets | ✅ | ✅ | ✅ |
| Create Jira issues on assets | ✅ | ✅ | ✅ |
| Share assets on Slack or Teams | ✅ | ✅ | ✅ |
| Insights | Included | Add-on | Add-on |
| Create and run new queries | ✅ | ➕ | ➕ |
| Create collections, folders, and saved queries | ✅ | ➕ | |
| View and run saved queries | ✅ | ➕ | ➕ |
| Schedule queries | ✅ | ➕ |