FAQ

Why is a permission visible but not editable? It's inherited from a parent. Change it at the parent or override with a Direct Deny (except admin).

Why didn't a project grant appear on an analysis? Make sure you granted the analysis-scoped actions at the Project level; actions are resource-specific.

Can I deny admin? No. admin cannot be denied.

How do I let users preview results but not download data? Grant read_analysis_result_preview (and keep read_analysis_result_data Neutral/Deny).

How do I grant access to all analyses in a project? Grant analysis actions (like read_analysis_result, run_analysis_command) at the Project level - they'll inherit to all analyses.

See Project-wide analysis access for a complete step-by-step guide.

What's the difference between Direct and Child Resource Permissions?

Direct: Permissions that apply to the current resource
Child Resource: Permissions that apply to the resource's children via inheritance

How do I hide one analysis from a team that can see others? On that specific analysis, set Deny (✖) for the read actions for that team.

See Restrict a single analysis for detailed steps.

Can I grant admin rights to children only? Yes. Use the Child Resource Permissions section and grant admin there - it only applies to children, not the parent.

See Admin on children only for a complete step-by-step guide.

Migration Support: Contact your Panomics administrator for assistance with large-scale migrations from the old system to the new access control system.

Why are actions split by resource type? This prevents accidentally granting access to a parent that you didn't intend to inherit to children. Each grant is intentional and precise.

PreviousGlossary NextTroubleshooting & gotchas

Last updated 22 days ago