Important user management concepts (2024)

Table of Contents
Overview of user access How groups and roles control access to New Relic Groups Our default user groups Roles Our standard (default) roles Administration settings Group admin Capabilities Manage users Use the API User management terms and definitions FAQs

To set up and manage your New Relic users, you should first understand some basic concepts about how our user management system works.

Overview of user access

The access that users have to product features is controlled by two factors:

  • User type (basic user, core user, full platform user): A user's user type is based on how much you expect that user to use New Relic.User type is a billing factor. It's not meant to be a way to set permissions. For more on this, see User type.
  • Role-based access: This is what you use to control your users' permissions, and that's what the remainder of this doc is about.

These are two separate systems. For you to be able to access a New Relic feature, both your user type and role-based permissions must allow that access. For more about the relationship between user type and roles, see User type and roles. The remainder of this doc is about role-based access.

How groups and roles control access to New Relic

At New Relic, user groups contain roles, and those roles contain permissions. In order for a New Relic user to use New Relic features, they must be in a group with assigned access to:

  • A specific role (a role being a set of specific, granular permissions).
  • One or more accounts.

Organizations with Pro or Enterprise editions can have multiple accounts in their organization, and can create custom roles and groups. Our Free and Standard editions allow only a single account in an organization, and don't let you create custom roles or groups.

When you initially sign up for New Relic, your organization has some built-in role and account assignments for the default User or Admin groups. For example, the Admin group has several role assignments that give users in that group broad New Relic access, including to the higher level administrative permissions.

Tip

Want to control how users access New Relic? Manage authentication domains here.

Here's a diagram showing how group access works and how they relate to the broader organization:

See Also
A Quick Guide to Getting Started with New RelicUser management UI and common tasksUsers, roles, permissions (original user model)Tutorial on managing accounts and user access

For tips on setting up groups, see our user management tutorial.

Groups

In New Relic, placing users in a group allows the managing of permissions for multiple users at the same time. For example, if you're using our automated user management feature, you can import a custom group of users (for example, External consultants) from your identity provider service, and then grant a role and an account to that group.

A user must be in at least one group with access to a role and at least one account in order to access New Relic features.

Note that groups are not what restrict a user's New Relic permissions: it's the role assigned to that group that grant access to the permissions.

We have two simple user groups available by default (see below). Pro and Enterprise organizations can create custom groups.

Users and groups are located within an authentication domain, which is what controls settings related to how users are provisioned (for example, via an identity provider) and how users log in.

Our default user groups

We have two default user groups:

  • User: A user in this group can use and configure our observability and monitoring features but not perform account-level tasks like managing billing or managing other users. It has access to the All product admin role, which grants control over all observability platform tools, but doesn't have any administration settings, which grant access to the higher level account and user management capabilities.
  • Admin: has the All product admin role and in addition has all available administration settings. As a result, this group has access to all features, including the higher-level admin features.

To edit the group a user is in, you can go to either the Access management UI and edit a group, or go to the User management UI and edit the user.

Roles

We offer several default roles, but organizations with Pro or Enterprise editions can create their own custom roles.

See Also
Introducing new core users starting at $49/month

Important points about roles:

  • Roles are additive: users with multiple roles assigned have the total of all permissions granted by those roles. For example, if you're in a group that gives you the All product admin role in an account, and in another group that gives you a Read only role for the same account, you have both roles, and are not restricted by the Read only role.
  • A user's access is based on the access granted to them by their user type and their permissions (learn more).
  • Roles govern observability platform features, while access to organization- and user-related admin settings are governed by administration settings.

To view roles and their permissions, go to the Access management UI and click Roles.

Our standard (default) roles

We have several standard roles, which are roles that are available by default and that satisfy some common user management use cases.

Important

Note that some of our standard roles have permissions that we don't expose and that aren't available for adding to a custom role. The only standard roles that can be replicated with a custom role are Standard user and Read only; all others have some non-exposed permissions.

Here's a table with our standard roles. To better understand these roles, go to the access management UI and select a role.

Standard roles

Description

User type guidelines

All product admin

This role includes all New Relic platform permissions except the ability to manage organization-level settings, users, and billing. It's an admin role in the sense that it allows the configuration of our platform features (for example, the ability to configure settings), but it doesn't provide organization-level admin permissions (those require the administration settings).

This role is essentially the Standard user role, below, with the added ability to configure observability features.

Any. Recommended: core or full platform.

Standard user

Provides access to our platform features (for example, APM UI and UI), but lacks permissions to configure those features and lacks organization-level and user management permissions.

Use the access management UI to view the capabilities included in the standard user role across the platform.

Any. Recommended: core or full platform.

Read only

Provides read-only access to the New Relic platform (except for synthetic monitor secure credentials and dashboard permissions).

Any.

For more about how you'd assign roles to groups and create custom roles, see the user management tutorial.

Administration settings

You can add various Administration settings to a group. Basic users will not be able to use these settings.

Settings include:

  • Organization settings: Permissions related to organization settings, including adding accounts, and changing the name of the organization and accounts.
  • Authentication domain settings: Permissions related to adding and managing users, including configuring authentication domains and customizing groups and roles. Options within this include:
    • Manage: Can manage all aspects of authentication domains, including configuring domains and adding users.
    • Read only: Can view authentication domain and user information.
    • Add users: Can view user information, and add users to the organization, but lacks other auth domain configuration and mgmt abilities.
    • Read users: Can only view user information.
  • Billing: Lets a user view and manage billing and usage, and data retention. For organizations with multiple accounts, billing is aggregated in the reporting account (usually the first account created in an organization).

Group admin

You can add a Group admin role to a group. This role gives the group the ability to add and remove users for one or more groups you select.

With this feature, you can give selected users the ability to add and remove users for a specific group. This may be preferable to granting users the much more powerful and organization-scoped Manage authentication domain setting. For example, you may have only one or two admins in the company with the organization-wide user management permissions, but you may want to give several more managers the ability to manage users for specific teams, and this role is useful for that.

To use the Group admin role, a user must be in a group with at least one of the authentication domain admin settings.

Capabilities

For information on the permissions that roles have and that are available for addition to custom roles, see Permissions.

Manage users

To learn how to add users, assign them to groups, and create custom groups and roles, see Manage users.

Use the API

For how to manage your users and groups via API, see our NerdGraph docs.

User management terms and definitions

For an explanation of how user access to accounts and roles works, see User management concepts. Here are some definitions for some of our user management terms:

  • A New Relic organization is the representation of your organization, containing all your accounts, users, and data. For more information, see Organization and account structure.
  • A permission is an ability to use or edit a specific, granular New Relic feature. For more information, see Permissions.
  • A role is a set of permissions. It is what gives a user their permissions. Our default standard roles have various permissions, and you can create custom roles that have custom permissions.
  • A user group has one or more roles associated with it. You assign your users to a group. We have default user groups (Admin and User), and you can make your own groups.
  • An authentication domain contains a set of users who are added to New Relic and who log in to New Relic in the same way.
  • If a user is a basic user, this takes precedence over any role-related permissions. For more on this, see Basic user and roles.
Important user management concepts (2024)

FAQs

What is the concept of user management? ›

User management is a core part of Identity and Access Management (IAM). It enables administrators to effectively manage users and their accounts, giving them access to various IT resources like devices, applications, systems, networks, SaaS services, storage systems, and more.

Show Me More
Why is user management important? ›

User management is not just about controlling access. It also plays a significant role in data security. By implementing stringent user management practices, businesses can prevent unauthorized access to sensitive data, thereby reducing the risk of data breaches.

Learn More
What are the three levels of user account management? ›

The three main types of User Access Levels in computer networks are System operator, System manager, and System analyst.

Find Out More
What is user management in IAM? ›

UAM is a component of Identity and Access Management (IAM) and is essential to modern IT infrastructure. Once a user's Identity is verified through authentication, UAM systems administer access to the right tools at the right time based on pre-determined factors for individuals or groups.

Learn More
What are the three elements of user management? ›

Key Elements in User Management

There are several key elements that make up user management, including user authentication, authorization, and access control. User authentication involves the process of verifying the identity of a user who is attempting to access a system.

Tell Me More
What are the basic concepts of access management? ›

Identity and access management ensures that the right people, machines, and software components get access to the right resources at the right time. First, the person, machine, or software component proves they're who or what they claim to be.

Tell Me More
What is an example of user access management? ›

Examples of Access Management

Depending on the permissions set within the system, they can either view or modify the database. Example 2. A team leader needs to approve their team members' timesheets. Once they log into the timesheet portal, they can view all timesheets and approve or reject them as required.

Get More Info Here
What is user management role? ›

User role management is the process of defining roles and permissions for users within a project management system. It is essential because it ensures that team members have the right level of access and responsibilities, enhancing security, collaboration, and accountability.

Continue Reading
What is a user management component? ›

The UMC allows the setup of a central user administration. This means you can define and manage users and user groups across software and devices.

Show Me More
What are the golden rules of account management? ›

The 3 golden rules of accounting are: Real Account - Debit what comes in, Credit what goes out. Personal Account - Debit the receiver, Credit the giver. Nominal Account - Debit all expenses Credit all income.

Show Me More

What are the concepts of user accounts? ›

A user account is an account assigned to an individual user to access a system. It typically requires a username and password for authentication and is used by a single person. User accounts should have limited permissions based only on a user's role and job responsibilities.

Get More Info Here
What is user management in simple words? ›

User management is a system to handle activities related to individuals' access to devices, software, and services. It focuses on managing permissions for access and actions as well as monitoring usage. Functions of user management include: Providing users with authenticated access.

View More
Why is user management needed? ›

User management allows administrators to manage resources and organize users according to their needs and roles while maintaining the security of IT systems. Administrators need powerful user management capabilities that can allow them to group users and define flexible access policies.

See Details
What is the concept of user administration? ›

Introduction. User Management module allows the administrator to manage users, roles, permissions, system roles, and application modules. One must be logged in as an administrator to manage a user management module. User administration describes the ability of admins to manage Role-Based User Access.

Continue Reading
What is the concept of user? ›

A user is someone who employs or uses a particular thing, like a user of nicotine or a user of an internet site. Since you are reading this, you are a user of Vocabulary.com. Congrats! To use something is to employ it or operate it, so a user is someone who uses or takes advantage of something.

Get More Info Here
Top Articles
2 People Killed, 12 Others Wounded During Mass Shooting At Homecoming Party In Greenville
At least 5 dead in Texas after severe weather hits Texas and Oklahoma
Po Box 7250 Sioux Falls Sd
Places 5 Hours Away From Me
Unit 30 Quiz: Idioms And Pronunciation
Methstreams Boxing Stream
Ets Lake Fork Fishing Report
Voorraad - Foodtrailers
DL1678 (DAL1678) Delta Historial y rastreo de vuelos - FlightAware
سریال رویای شیرین جوانی قسمت 338
Best Cav Commanders Rok
Does Publix Have Sephora Gift Cards
414-290-5379
Valentina Gonzalez Leaked Videos And Images - EroThots
Everything You Need to Know About Holly by Stephen King
Bestellung Ahrefs
Belly Dump Trailers For Sale On Craigslist
272482061
Gdp E124
Find Such That The Following Matrix Is Singular.
College Basketball Picks: NCAAB Picks Against The Spread | Pickswise
Danielle Ranslow Obituary
Getmnapp
Piedmont Healthstream Sign In
Renfield Showtimes Near Paragon Theaters - Coral Square
Roanoke Skipthegames Com
UAE 2023 F&B Data Insights: Restaurant Population and Traffic Data
Co10 Unr
3 Ways to Format a Computer - wikiHow
Meowiarty Puzzle
Greyson Alexander Thorn
Lawrence Ks Police Scanner
Does Circle K Sell Elf Bars
Calculator Souo
Joe's Truck Accessories Summerville South Carolina
Cvb Location Code Lookup
Claim loopt uit op pr-drama voor Hohenzollern
Culver's of Whitewater, WI - W Main St
Htb Forums
Gifford Christmas Craft Show 2022
Prior Authorization Requirements for Health Insurance Marketplace
140000 Kilometers To Miles
511Pa
Below Five Store Near Me
Pa Legion Baseball
COVID-19/Coronavirus Assistance Programs | FindHelp.org
Csgold Uva
John Wick: Kapitel 4 (2023)
Sherwin Source Intranet
Walmart Front Door Wreaths
Nurses May Be Entitled to Overtime Despite Yearly Salary
King Fields Mortuary
Latest Posts
R+L Carriers Tracking – FreightCenter
Deadly Shooting at Texas Car Dealership Began When Fugitive Confronted: Investigator
Article information

Author: Golda Nolan II

Last Updated:

Views: 6625

Rating: 4.8 / 5 (58 voted)

Reviews: 89% of readers found this page helpful

Author information

Name: Golda Nolan II

Birthday: 1998-05-14

Address: Suite 369 9754 Roberts Pines, West Benitaburgh, NM 69180-7958

Phone: +522993866487

Job: Sales Executive

Hobby: Worldbuilding, Shopping, Quilting, Cooking, Homebrewing, Leather crafting, Pet

Introduction: My name is Golda Nolan II, I am a thoughtful, clever, cute, jolly, brave, powerful, splendid person who loves writing and wants to share my knowledge and understanding with you.