Users & Roles
Requires Basic
User management is the heart of administration: this is where you create accounts, use role-based access control (RBAC) to decide who’s allowed to do what, reset passwords, and deactivate or delete accounts. Everything is tenant-scoped — you always manage the users of your active tenant (super admins can see across tenants).
You’ll find this area under Administration → User Management; an account’s detail
page lives at /admin/users/….
In this section
Section titled “In this section”- How do I create a user — and what happens behind the scenes? — the complete guide, including password hashing, invitations, 2FA and the audit log
- Understanding roles & permissions — the RBAC matrix from Viewer to Administrator
- Create a custom role — tailored permission bundles
- Reset a password administratively — set a password, invite by e-mail, reset link
- Deactivate or delete a user — deactivation, GDPR erasure, and how it differs from the recycle bin
Requirements
Section titled “Requirements”User and role management requires the Administrator role. It is included in all plans. E-mail features (invitations, reset links) require a configured SMTP server.
Related topics
Section titled “Related topics”- Tenants — users across multiple tenants
- SSO / OIDC — signing in via an identity provider
- API Tokens — programmatic access on behalf of a user