Users and Roles
Each Satori account can be accessed by multple users. Each user is assigned with a role, to reflect their responsibilities. Service accounts are used for API access, and each service account is assigned with its own role.
Roles
Satori provides mulitple roles for accessing the management console:
| Role | Description |
|---|---|
| Account Admin | Full account access including user management |
| Account Editor | Full account access without user management |
| Account Viewer | Read only account access |
Users
There are 2 types of users in Satori:
- Account users - created by account admins in the management console. Account users are required to use two-factor authentication which they need to set up the first time the log in.
- Identity Provider users - created when new users login via SSO (see SSO section).
Service Accounts
Service accounts are similar to users but can only be used for API access. To create a service account, go to the Service Accounts tab in the User Management screen. After the service account is created, copy the service account ID and key, which you will use to obtain an authentication token.