Role-Based Access Control
Manage permissions with roles and policies
Overview
ViksaAI uses Role-Based Access Control (RBAC) to manage what users can do within an organization. Roles are assigned at the organization level and determine access to features and resources.
Built-in Roles
Account Owner
Full access to everything. One per account.
- Manage billing and subscription
- Create and delete organizations
- All Admin permissions
Admin
Organization management and user administration.
- Manage organization settings
- Invite and remove users
- Manage SSO configuration
- All Member permissions
Member
Day-to-day usage of the platform.
- Create and manage agents
- Run execution via chat
- View executions
- Access marketplace
Permission Modules
Permissions are organized into modules for granular control:
| Module | Permissions |
|---|---|
| Agents | Create, Read, Update, Delete, Deploy, Build |
| Execution | Create, Read, Execute, Cancel |
| Secrets | Create, Read, Update, Delete |
| Schedules | Create, Read, Update, Delete, Pause |
| Users | Invite, Remove, UpdateRole |
| Settings | Read, Update, ConfigureSSO |
Custom Roles
Enterprise
Enterprise plans can create custom roles with specific permission combinations. Contact your account manager to enable custom roles.
Best Practices
Follow the principle of least privilege
Review role assignments regularly
Use Admin role sparingly
Document role assignments for audit purposes