Users and Roles
Each Satori account can be accessed by multiple users. Each user is assigned with a role to reflect their responsibilities. Service accounts are used for API access, and each service account is assigned its own role.
Roles
Satori provides multiple roles for accessing the management console:
| Role | Description |
|---|---|
| Account Admin | Full account access including user management |
| Account Editor | Full account access without user management |
| Account Reader | Read only account access |
| Data Steward | Read only account access with partial write access to assigned Datasets |
| Data Consumer | Access to the Satori Data Portal only |
Satori User Types
There are 2 types of users in Satori:
- Account users - created by account admins in the management console. Account users are required to use two-factor authentication which they need to set up the first time the log in.
- Identity Provider users - created when new users login via SSO (see SSO section).
Service Accounts
Service accounts are similar to users but can only be used for API access. To create a service account, go to the Service Accounts tab in the User Management screen. After the service account is created, copy the service account ID and key, which you will use to obtain an authentication token.