CloudQuery Platform
  • Introduction
    • Welcome to CloudQuery Platform
    • Getting Help
  • Quickstart
    • Creating a New Account
    • Platform Activation
  • Core Concepts
    • Integrations
    • Syncs
    • Filters & Queries
    • SQL Console
    • Reports
  • Integration Guides
    • Setting up an AWS Integration
    • Setting up a GCP Integration
    • Setting up an Azure Integration
    • Setting up a GitHub Integration
    • Setting up a K8s Integration
      • Using AWS EKS
      • Using Azure AKS
      • Using GCP GKE
    • General Integration Setup Guide
    • General Destination Setup Guide
  • Syncs
    • Setting up a Sync
    • Monitoring Sync Status
  • Cloud insights
    • From cloud asset inventory to insights
      • Security-focused queries
      • Compliance-focused queries
      • FinOps-focused queries
  • Production Deployment
    • Enabling Single Sign-on (SSO)
      • Single Sign-On with Google
      • Single Sign-On with Microsoft
      • Single Sign-On with Okta
  • User Management
    • Platform Roles Overview
    • Workspace Roles Overview
  • Advanced Topics
    • Understanding Platform Views
    • Performance Tuning
  • Reference
    • Filter Query Syntax
  • API Reference
  • CLI Docs
  • CloudQuery Hub
Powered by GitBook
On this page
  • General:Read
  • General:Write
  • Admin:Read
  • Admin:Write

Was this helpful?

  1. User Management

Workspace Roles Overview

There are four Workspace roles that can be granted to users.

General:Read

This is the most limited role in a Workspace. A user with this role can:

  • see all the data in the Asset Inventory

  • create and save their own search filters in Asset Inventory

  • query data in the SQL Console

  • create and save their own SQL queries in the SQL Console.

  • see the list of integrations, destinations, and syncs and their status

General:Write

In addition to the above, a user with this role can:

  • create/update/delete integrations, destinations, and syncs

  • create/delete Workspace API keys with General:Read or General:Write role.

Admin:Read

This is a Workspace Admin role with a read-only access. A user with this role can do everything in the General:Read role and additionally:

  • see all workspace users

Admin:Write

This role is the administration role for the Workspace. A user with this role can do all of the above and:

  • create/delete Workspace API keys with Admin:Read, Admin:Write, General:Read and General:Write roles.

PreviousPlatform Roles OverviewNextUnderstanding Platform Views

Last updated 1 month ago

Was this helpful?