# ServoyCloud Roles ## Overview The ServoyCloud Roles section is where you can manage a user's role and the associated permissions. ## Roles User role and permissions determine the actions and features that users can access or perform within the namespace. In ServoyCloud Control Center, there are distinct roles, each offering different levels of access and [permissions](#permissions). The available roles are as follows: ### Observer * **Access Level**: Restricted * **Permissions**: * [Pipeline Results](#pipeline-results) * **Role Description**: * The Observer role is designed for users who require limited access to the application, primarily for the purpose of monitoring or viewing specific data or results. ### **DevOps Role** * **Access Level**: Moderate * **Permissions**: * [Non Production](#non-production) * [Source Control](#source-control) * [Pipeline Results](#pipeline-results) * **Role Description**: * The DevOps role is intended for users who play a significant role in the software development and deployment process but do not need full administrative access. ### **Administrator Role** * **Access Level**: Full Control * **Permissions**: * [All](#permissions) * **Role Description**: * The Administrator role is the highest level of access within the system. Users with this role have complete control over the application and its settings. This role can be assigned by other users with Administrator role or automatically by the system when creating a new namespace. ## Assign Role By default, all users start with the Observer role, which has limited permissions. To assign a different role, follow these steps: 1. Navigate to `Security -> ServoyCloud Users`. 2. Click on [manage user](https://docs.servoy.com/reference/servoy-cloud/cloud-control-center/administration/admin-users/..#manage-user-menu) button ![three dots](https://3933488479-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FjpWd52BKwABWxF2lScUK%2Fuploads%2Fgit-blob-4bf4a1482b741eaabc1d082ebd43dbb5b0b56336%2Fmenu-more-p.jpg?alt=media) and select **Assign Role** 3. Change the assigned role from the dropdown list. 4. Save changes ## Remove Role Removing a role is not possible in Cloud Control Center. However, there are alternative steps you can take based on your requirements: 1. **Assign a Different Role** * If you wish to grant additional permissions or change a user's role, you can do so by [assigning a different role](#assign-role) that offers a higher [access level](#roles) and the desired permissions. 2. **Restrict or Limit Access** * If you intend to restrict or limit a user's access to ServoyCloud features, you have the following alternatives: * **Lock the User**: This can be accomplished from the `Security -> ServoyCloud Users` section by accessing the user context menu ![three dots](https://3933488479-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FjpWd52BKwABWxF2lScUK%2Fuploads%2Fgit-blob-4bf4a1482b741eaabc1d082ebd43dbb5b0b56336%2Fmenu-more-p.jpg?alt=media). [Locking a user](https://docs.servoy.com/reference/servoy-cloud/cloud-control-center/administration/admin-users/..#lock-unlock-user) can be an effective way to temporarily restrict their log in access to Cloud Control Center. * **Assign the "Observer" Role**: The [Observer](#observer) role is specifically designed for users who require limited permissions and restricted access to ServoyCloud features. [Assigning ](#assign-role)[this role](#assign-role) can help you achieve the desired level of access control. ## Permissions Permissions define what each role can do. They are linked to [roles](#roles), ensuring that users with a specific role have the corresponding permissions. The following permissions are available in ServoyCloud: #### **Manage Account** Control company account settings #### **Manage Add-Ons** Enable and configure add-on features to ServoyCloud #### **Manage Users** Manage and create users and roles in ServoyCloud #### **Manage Credentials** Access to integrated system credentials #### **Production** Provision production environments #### **Non Production** Create, modify and Run non-production jobs #### **Source Control** Allowed to Push changes to Source Control #### **Pipeline Results** View jobs, environments, packages, artifacts and reports ### Modify permissions Permissions are predefined and cannot be individually chosen or customized for specific roles. However, you can choose from existing roles to grant or remove permissions as needed to align with the user's access level requirements. To assign a different role, follow the steps outlined in the [Assign Role](#assign-role) section.