User Management and Role-Based Access Control
Managing your team effectively is crucial for maintaining security and productivity. LogCentral's role-based access control (RBAC) system helps you control who can access your organization's resources and what they can do with them.
Understanding User Roles
LogCentral uses a role-based permission system to control access within your organization.
Each user is assigned a specific role that determines their level of access and capabilities.
Available Roles
Your organization supports several user roles, each with different permission levels:
Owner: Has full control over the organization, including the ability to manage all users and transfer ownership
Member: Standard access level for team members working within the organization
Reader: View-only access to organization resources
Billing: Specialized role for managing subscription and billing information
The permission system is designed to align with your organization's security requirements, ensuring that users only have access to the features they need.
Inviting Users to Your Organization
To add new team members to your organization:
Navigate to your organization's user management area
Look for the option to invite or add new users
Enter the email address of the person you want to invite
Select the appropriate role for the new user
Send the invitation
The invited user will receive an email notification and can join your organization by following the provided instructions.
Managing User Roles
Changing a User's Role
Only users with the owner role can change other users' roles within the organization. This restriction helps maintain security and prevents unauthorized permission changes.
To modify a user's role:
Access your organization's user management section
Locate the user whose role you want to change
Select the new role from the available options
Confirm the change
Transferring Ownership
Ownership transfer is a sensitive operation that requires special attention:
Only the current owner can transfer ownership to another user
The transfer process ensures continuity of organization management
Consider carefully before transferring ownership, as this gives complete control to the new owner
Understanding Permissions
The permission system controls what actions users can perform based on their assigned role. The system is implemented using the usePermissions hook, which checks user permissions against their current role in the organization.
How Permissions Work
When you're working in LogCentral, the system automatically:
Identifies your current organization context
Checks your assigned role within that organization
Grants or restricts access to features based on your role
Updates permissions if your role changes
This happens seamlessly in the background, ensuring you always have the appropriate level of access.
Managing User Access to Locations
Users within your organization may need access to specific locations. The system tracks user-organization relationships through the database, storing information such as:
User ID and organization ID associations
Assigned role within the organization
User contact information (name, email)
Last sign-in timestamp
This information helps you monitor who has access to your organization and when they last accessed the system.
Removing Users from Your Organization
When team members leave or no longer need access:
Navigate to your user management area
Find the user you want to remove
Select the option to remove or deactivate their access
Confirm the removal
Best Practice: Remove users promptly when they no longer need access to maintain security and accurate user counts for billing purposes.
Best Practices for User Management
Assign Appropriate Roles
Give users the minimum permissions they need to do their work
Use the reader role for team members who only need to view information
Reserve the owner role for trusted administrators
Use the billing role specifically for finance team members
Regular Access Reviews
Periodically review your organization's user list
Remove users who no longer need access
Verify that user roles still match their current responsibilities
Check the last sign-in dates to identify inactive accounts
Check audit logs
Security Considerations
Limit the number of users with owner permissions
Be cautious when transferring ownership
Monitor role changes to ensure they're authorized
Keep user contact information up to date
Multi-Organization Management
If you work with multiple organizations:
Remember that roles are organization-specific
A user can have different roles in different organizations
The system automatically switches context when you change organizations
Your permissions update based on your role in the currently selected organization
Troubleshooting Common Issues
Can't Change User Roles
If you're unable to modify user roles, verify that:
You have the owner role in the organization
The user you're trying to modify is actually a member of your organization
You're working in the correct organization context
User Not Receiving Invitation
If an invited user doesn't receive their invitation:
Verify the email address is correct
Ask them to check their spam folder
Ensure they're not already a member of the organization
Try resending the invitation
Permission Denied Errors
If a user reports permission issues:
Verify their assigned role matches their job requirements
Check that they're accessing the correct organization
Confirm they're signed in with the correct account
Review whether their role was recently changed
Related Topics
IP Management: For controlling which IPs can send logs to various locations , refer to the IP Management article
Organization Settings: Learn more about configuring your organization
Subscription and Billing: Understand how user counts affect your billing
Need Help?
If you have questions about user management or role-based access control that aren't covered in this article, please contact our support team. We're here to help you manage your team effectively and securely.