Skip to main content

Group Management

In the Group Management section, you can manage permission groups.
A permission group has an assigned role (e.g. built-in roles like Editor or a custom role) and a collection of users.

Use permission groups to assign roles to a collection of projects. Then assign group memberships to users rather than direct project-specific permissions.

  • Users can only assign permission groups having equal or fewer permissions.
    For example, a permission group such as User Administrators cannot assign an Administators permission group to other users, since the Administrators permission group includes additional permissions - Can manage billing and Can manage organization - beyond Can manage users.
  • Users can only edit or delete users having equal or fewer permissions. For example, a member of User Administrator cannot edit or delete any user with Administrators membership.
  • Users can only create permission groups having equal or fewer permissions. For example, a User Administrator cannot assign an Administrator role in a newly created group.
  • Users can only edit or delete permission groups having equal or fewer permission For example, a User Administrator cannot add or remove users from an Administrators permission group.

Organization-wide vs project-specific roles

If a permission group has an organization-wide role (e.g. Can manage users, see Role Management for details), the permission group has the same role for all projects.