Question 1

What is the difference between organization-level roles and team roles in Grepr?

Accepted Answer

Organization-level roles like Admin and Member control global access to Grepr features. Team roles (Leader/Member) are scoped to specific teams and allow for more granular access control. A user can be a team Leader without being an organization-level Admin.

Question 2

How do I invite users to my Grepr organization?

Accepted Answer

In the Users pane of the user management UI, click 'Invite new users' and enter email addresses. You can optionally assign roles and team assignments to invited users before sending the invitation. Users receive an email invitation they must respond to join the organization.

Question 3

Can I manage users and teams through the REST API?

Accepted Answer

Yes, Grepr provides REST APIs for complete user and team management. You can use the Users API and Roles API endpoints documented in the OpenAPI specification to programmatically manage users, roles, and team memberships.

Question 4

What permissions do I need to access the user management UI?

Accepted Answer

You must have the view:users permission to access the user management UI. This permission is automatically granted to organization Admins and team Leaders.

Question 5

How do custom roles work in Grepr?

Accepted Answer

Custom roles allow you to define specific permissions for different resources (jobs, integrations, datasets, etc.). You can select which resources a custom role has access to and what permissions it grants (view, edit, create, delete, or all).

Question 6

Can a user be assigned to multiple teams?

Accepted Answer

Yes, a user can be assigned to multiple teams with different roles in each team. For example, a user can be a Leader in one team and a Member in another team simultaneously.

Question 7

What happens when I remove a user from my organization?

Accepted Answer

When you remove a user, they are deleted from your organization and all their access is revoked immediately. They lose access to all organization-level resources and all team-scoped resources.

Question 8

How do I ensure proper access control when assigning users to teams?

Accepted Answer

Follow the principle of least privilege by granting users only the access they need. Use team membership to scope access to specific resources, and use custom roles for fine-grained permission control when built-in Admin and Member roles don't meet your requirements.

Question 9

What is the difference between editing a user and editing a custom role?

Accepted Answer

Editing a user allows you to update their name, email, and assign or change their organization-level roles and team memberships. Editing a custom role changes the permissions it grants, which affects all users assigned to that role.

Question 10

Can team Leaders manage team membership without being organization Admins?

Accepted Answer

Yes, team Leaders have the ability to manage team membership, including adding and removing members, without needing organization-level Admin privileges. This allows for delegation of team management responsibilities.

Grepr administration

Manage users

Manage teams

Manage SSO claim mappings

Manage service accounts

Monitor system activity in your Grepr environment

Frequently Asked Questions