A role is a predefined set of privileges. Privileges define rights to perform actions. Users are assigned roles and each role has specific privileges. To assign privileges, you pair a user or team with a role and associate that pairing with an endpoint or endpoint group. A single user or team can have different roles for different endpoints in the Portainer inventory.
There are four types of roles:
- Endpoint Administrator
- Standard User
- Read-Only User
Endpoint Administrator has complete control over the resources deployed within a given endpoint, but is not able to make any changes to the infrastructure that underpins an endpoint (ie no host management), nor able to make any changes to Portainer internal settings
Helpdesk has read-only access over the resources deployed within a given endpoint but is not able to make any changes to any resource, nor open a console to a container, or make changes to a container’s volumes.
Standard User has complete control over the resources that user deploys, or if the user is a member of a team, complete control over resources that users of that team deploy.
Read-Only User has read only access over the resources they are entitled to see (resources created by members of their team, and public resources).
Outside of these four roles, there is the built-in role of “Administrator” which is effectively a “Global Admin”. A user assigned this role has complete control over Portainer settings, and all resources on every endpoint under Portainer control.
Licensed per Portainer instance per year. Upon completion of the purchase process the appropriate license will be emailed automatically. Portainer is unable to offer a trial license on this product. However a 90 day money back guarantee applies to all purchases
NOTE: To use this extension, you must be running Portainer version 1.21.0 or higher. Please check the version you are using in the bottom left of your Portainer instance.