User Management

Access Control

Gremlin provides role based access control functionality that grants specific permissions to a role and then a role to each user.

Roles

The following permissions are available for each individual role.

User

  • API Keys - Create, view, and revoke
  • Clients - Deactivate
  • Users - Invite new users
  • Attacks - Create and halt
  • Schedules - Create and delete
  • Templates - Create and delete

Super User

Super users include all permissions of a User as well as:

Teams
  • Create and reset secret
  • Create, destroy, and download certificate
  • Create and delete teams
  • Enable and disable user auto-add
Company
  • Set SSO domain
  • Enforce MFA
  • Enable, disable, and configure SAML
  • Add, configure, and remove integrations
Users
  • Deactivate user
  • Change user role
  • Disable user MFA
Clients
  • Reactivate