User Roles and Permissions

Jul 30, 2025

User Roles and Permissions

Overview 

In Atlas, the actions a user can perform are determined by their assigned role(s). The administrator has permissions to everything and is the only role that can assign roles to other users. An Atlas user may have one or more roles assigned; when multiple roles are assigned to a user, they get the combined functionality of each assigned role. This flexibility enables a least privileged access model, scoping user access to perform tasks aligned to their responsibilities. Example: Existing User Role is Manage Certificates. This user requires access to request and submit new profiles (Identities). The Admin should update the user to include Manage Identities in their role to have access to managing Identities. 

Invite New User 

1. Log in to your Atlas account.  

2. Click the person icon on the upper right corner.  

3. Click the Account Settings dropdown, then select Users 
   
   

4. Click Invite User.
   
   

5. Enter the work email address and the email language of the user you want to add/invite into Atlas portal.
   
   

6. In the list of Roles, tick the box of the role/s that you want to assign to the additional user.
   Note: You can select multiple roles and permissions for that user.  

7. Click on Send Invite to complete the process. The new user will receive an email notification with the log in page to confirm the invitation.
   
   

Update/Assign User Role  

1. Log in to your Atlas account.  

2. Click the person icon on the upper right corner.  

3. Click the Account Settings dropdown, then select Users.
   
   

4. Select the user you wish to update.  

5. Go to Actions tab and click on the ellipses to view options. Then, click Assign Roles. 
   
   

6. In the list of Roles, tick the box of the role/s that you want to assign to the selected user. Then, click Assign to complete the process. Note: You can select multiple roles and permissions for that user.  
   
   

Definitions 

• Role – A predefined collection of permissions, enabling a specific scope and level of access within Atlas. 

• Permission – A specific right allowing a user to perform one or more specific actions within Atlas.

• Roles:
  
  • Administrator – The default role for the first user of an Atlas account. This role has permissions to perform all actions within the Atlas portal. It is the only role with permissions to create and manage users and to assign roles. 
  
  • Manage Certificates – Enables a user to perform certificate lifecycle management including certificate issuance, reissue, renewal, and revocation. 
  
  • Manage Credentials – Permits a user to generate and manage Atlas API Credentials and connect services to them. Note: API credentials are scoped at the account level and not specific to the user. Roles listed in the Atlas Portal do not apply to API credentials. 
  
  • Discovery – Access to Atlas Discovery, enabling a user to create, run, and view the results of certificate discovery scans.  
  
  • Manage Domains – Enables a user to add, remove, validate, approve, and/or deactivate a domain.  
  
  • Manage Finances – Allows a user to accept quotes, process payments, and update payment information.  
  
  • Manage Identities – Permits a user to create and manage new identity profiles.