Product Guide
Organization Administration

Roles and Permissions

4min
permissions permissions are a key security control in order to protect sensitive information and maintain the integrity of systems, permissions play a fundamental role by defining what actions or operations a user or process can perform, permissions help to enforce access control and ensure that only authorized individuals have the ability to perform certain tasks these permissions act as a safeguard, preventing unauthorized access or misuse of resources in kubeark, permission types grant users access to different sections of the app and define key allowed actions for the users, such as read, create, update or delete items on the specific section a role is identified as group of permissions that are grouped under one name all the roles can be customised roles during the installation process of the kubeark platform, an administrative role with all permissions is created by default this allows for an initial level of access control to be established for the administrator, who can then proceed to create custom roles with varying levels of permissions the custom roles can be tailored to the needs of specific user groups, departments, or projects, enabling a flexible and granular approach to access control all sections of the web application are structured with the standard create, read, update, and delete (crud) permissions this allows for precise control over the level of access that each role has to the different sections and features of the web application the administrator can then assign specific roles to individual users or groups of users, ensuring that only authorized users have access to sensitive data and functionality additionally, the kubeark platform provides advanced auditing capabilities that allow you to track and record actions performed by users and to gain a better understanding of user activity this can help you to detect any malicious or accidental actions, as well as to identify any areas where additional controls are required overall, the kubeark platform's role based access control system allows you to establish a secure and compliant environment, while also providing the flexibility and granularity that you need to manage access control for a diverse set of users the is created during the kubeark installation process and is the most powerful account, being authorised to execute all the possible actions in the kubeark platform the is a basic permission level needed in order to access the kubeark platform this role can be created, updated, or deleted based on the rbac matrix defined by the global admin , admin , or user below you will find a list of all possible permissions asset permissions users users read users create users update users delete roles roles read roles create roles update roles delete cluster cluster read cluster create cluster update cluster delete config config read config create config update config delete deployment deployment read deployment create deployment update deployment delete license license delete license update license create license delete monitoring monitoring read monitoring update monitoring create monitoring delete billing billing read billing update billing create billing delete alerts alerts read alerts update alerts create alerts delete logs logs read logs update logs create logs delete webhooks webhooks read webhooks create webhooks update webhooks delete