User Roles and Permissions
TapeAlert includes a role-based access system that controls what actions users can perform within the platform. Understanding these roles is essential for properly managing your team’s access.
Available Roles
Partner Admin
Partner Administrators have full control over the partner account, including:
- User Management: Add, remove, or modify users
- Organization Management: Add and remove Tape organizations
- Webhook Configuration: Create, edit, and delete webhooks
- Destination Management: Configure notification destinations
- Billing Management: View and modify subscription details
- Usage Analytics: Access analytics and usage statistics
Partner Admins are typically the technical leads or managers responsible for the overall notification strategy.
Regular User
Regular users have limited permissions focused on day-to-day operations:
- View Organizations: See organizations they have access to
- Webhook Management: Create and manage webhooks
- Destination Configuration: Set up and edit notification destinations
- View Logs: Access notification logs for troubleshooting
Regular users cannot:
- Add or remove users
- Manage billing or subscription details
- Add new organizations
- Access partner-wide settings
Special Roles
First User / Account Owner
The first user who creates a partner account is automatically assigned as a Partner Admin. This user has special significance:
- Cannot have their admin role revoked (without contacting support)
- Receives primary communications about the account
- Is designated as the account owner for billing purposes
System Administrator
System Administrators are TapeAlert staff members who have global access for support purposes:
- Can assist with technical issues
- May access your account with explicit permission for troubleshooting
- Can perform backend operations not available through the UI
System Administrators adhere to strict privacy and security policies when accessing customer accounts.
Role Assignment
Assigning Roles
Only Partner Admins can assign roles:
- Navigate to Partner Administration
- Select the User Management tab
- Find the user you want to modify
- Click Make Admin to promote a regular user to Partner Admin
Removing Admin Privileges
To remove admin privileges:
- Navigate to Partner Administration
- Select the User Management tab
- Find the admin user
- Click Remove Admin Role
Note: There must always be at least one Partner Admin. You cannot remove admin privileges from the last remaining admin.
Permission Details
Below is a detailed breakdown of permissions by role:
| Feature/Action | Partner Admin | Regular User |
|---|---|---|
| View dashboard | ✓ | ✓ |
| View organizations | ✓ | ✓ |
| Add organizations | ✓ | ✗ |
| Delete organizations | ✓ | ✗ |
| Create webhooks | ✓ | ✓ |
| Configure destinations | ✓ | ✓ |
| View notification logs | ✓ | ✓ |
| Manage API keys | ✓ | ✗ |
| Add users | ✓ | ✗ |
| Remove users | ✓ | ✗ |
| Modify user roles | ✓ | ✗ |
| View billing details | ✓ | ✗ |
| Change subscription | ✓ | ✗ |
| Update payment methods | ✓ | ✗ |
| View usage statistics | ✓ | Limited |
| Access partner settings | ✓ | ✗ |
Best Practices for Role Management
Security Considerations
- Principle of Least Privilege: Assign users the minimum permissions they need to do their job
- Regular Audits: Periodically review user roles to ensure they’re appropriate
- Immediate Updates: When employees change roles or leave, update their permissions immediately
Role Strategy
- Multiple Admins: Have at least two Partner Admins to ensure continuity
- Separation of Duties: Consider separating billing administration from technical administration
- Targeted Permissions: Assign roles based on job function and responsibilities
Documentation
- Maintain documentation of who has which role and why
- Document the process for requesting role changes
- Establish clear policies for role assignment within your organization
Next Steps
- Learn how to add and manage users
- Understand how to set up multi-partner access
- Review your subscription plan details