> For the complete documentation index, see [llms.txt](https://help.aikido.dev/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://help.aikido.dev/getting-started/automated-user-management/setting-roles-and-permissions.md). # Setting Roles and Permissions ## Roles and Permissions Logic Aikido offers three distinct user roles (**admins**, **default** and **team-only** users) to manage access and permissions effectively. Default and team-only users can have **standard editing rights** or can be **read-only**. | Role | Access Level | | ------------------- | ------------------------------------------------------------ | | **Admins** | Full access | | **Default Users** |

Global / All Teams

Standard rights or read-only

| | **Team-Only Users** |

Team-specific

Standard rights or read-only

| ### Default Users vs Team-Only Users The main difference between the two is that team-only users only have access to those issues for the teams they belong to. They still are able to mostly manage issues. | Permission | Default Users | Team-Only Users | | ------------------------------------------------------------------------------------ | ------------- | ----------------------------------------------------- | |

Issue Actions

Snooze, ignore, severity change, autofix

| ✅ | ✅ | | **Create Tasks** | ✅ | ✅ | | **Add Repos** | ✅ | ❌ | | **Add Container Registries** | ✅ | ❌ | | **Add Domains** | ✅ | Connected to repos only. No standalone. | | **Export Issues** | ✅ | ❌ | | **Pentests** | ✅ | ❌ | | **Code Quality** | ✅ | ❌ | | **Zen Firewall** | ✅ | ❌ | | **Acces to Settings** | All settings | General Settings **Only** | | **Acces to Reports** | All Reports | Trends Over Time, Licenses & SBOM and Malware Monitor | ### Advanced Rights for Users with Standard Rights Aikido has an extra layer of permissions that can be enabled or disabled (both for default and team-only users). This is helpful in case you still want users to be able to execute certain actions. **Read-only rights block all possible actions.** **Configurable for Default and Team-Only** * **Snooze/Ignore Issues**: Ability to temporarily or permanently dismiss issues. Users without ignore permissions can request to ignore individual issues via the [approval inbox](/getting-started/core-functionalities/approval-inbox-for-ignored-issues.md). Snooze is not affected. * **Change Issue Severity**: Ability to modify the severity level of issues. * **Can export data:** Ability to export csv reports of vulnerability issues. **Limited to Default Users** * **Manage Teams**: Ability to manage team settings and membership. * **Manage Repositories:** Ability to change branch, set multi-branch scanning and manage custom SAST rules. * **Manage Clouds:** Ability to add and configure clouds * **Manage Containers:** Ability to add and configure containers * **Manage Domains:** Ability to add and configure domains * **Manage Pentests:** Ability to run and configure pentests * **Manage Code Quality Rules:** Ability to add and configure Code Quality Rules & manage code context ## How to change roles and permissions **Step 1.** Go to the user overview in your settings **Step 2.** Click the triple dots to open up the role and permissions modal for a specific user
**Step 3.** Set the preferred user role and permissions
--- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://help.aikido.dev/getting-started/automated-user-management/setting-roles-and-permissions.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.