Workspace Roles
link
Ennote offers the following roles within shared workspaces:
- Workspace AdminFull control of workspace.
- Workspace EditorAll workspace admin permissions except IAM perms.
- Workspace ViewerAll workspace viewer permissions except IAM perms.
- Workspace AuditorAll workspace viewer permissions except IAM perms and sensitive information.
Permission Inheritance
link
Users inherit permissions from their organization role. This means that an Organization Admin will automatically have Workspace Admin privileges in all workspaces within the organization.
Role Comparison Table
link
| Role | Full Control | IAM Management | Secret management | View Resources in Workspaces | View Sensitive Info |
|---|---|---|---|---|---|
| Workspace Admin | check_small | check_small | check_small | check_small | check_small |
| Workspace Editor | remove | remove | check_small | check_small | check_small |
| Workspace Viewer | remove | remove | remove | check_small | check_small |
| Workspace Auditor | remove | remove | remove | check_small | remove |
Best Practices
link
- Principle of Least Privilege:Grant users only the minimum necessary permissions to perform their tasks. This helps improve security and reduce the risk of accidental or malicious changes.
- Regularly Review Permissions:Periodically review the roles assigned to users to ensure they still align with their current responsibilities.
- Private Workspaces:Remember that private workspaces have a different permission model. Only the owner of a private workspace can access its contents.
- Organization Roles:A user's organization role can influence their workspace permissions. Be aware of permission inheritance when assigning roles within a workspace.
Need Help?
link
If you encounter any issues or have questions, don’t hesitate to contact support. Our team is here to assist you with any challenges you might face.
© 2025 Ennote.io. All Rights Reserved.