What you can do with access control

  • Group users into Teams and reuse them across resources.

  • Grant precise, resource-scoped permissions.

  • Inherit permissions from parents to children (e.g., Project → Analysis).

  • Use Deny to override inherited Allow.

  • Use umbrella actions (e.g., read_project) for simpler grants.

  • Delegate admin on just the children of a resource.

Common use cases

  • Make projects internal public - Grant read_project to All Users team

  • Grant project-wide analysis access - Use analysis actions at the project level

  • Auto-assign guests by domain - Set up domain rules in Organization Settings

  • Delegate admin to children only - Use Child Resource Permissions section

  • Restrict specific analyses - Use Direct Deny on individual analyses

  • Create external collaborator access - Grant analysis-specific permissions to external teams

See How-to / Common Recipes for step-by-step guides on all these use cases.

PreviousOverviewNextQuick start: Give a team access in 2 minutes

Last updated