Manage account and integration permissions – Celigo Help Center

This article describes account permissions and transfers of ownership of individual integrations and flows. For information about managing ownership, see Transfer account ownership.

User invitation criteria matrix
Available permissions
Assign permissions to a new user
User permission list for account
Modify permissions
Verify your permissions

integrator.io accounts have three types: account owners, administrators, and users.

Account owner: The account owner can invite other integrator.io users to their integration environment and configure their permissions to view or change integrator.io components. Sharing the account allows other members of your team to contribute to managing and monitoring your integrations.
Rate this feature
Included in the Feb. 2021 release Admin: Admins have all the same permissions that an account owner has to modify user roles, but an admin can’t alter the permissions of the account owner or transfer ownership of the account to another user. The administrator can invite other integrator.io users to their integration environment and configure their permissions to view or change integrator.io components. Admins can create new admins, delete users from an account, change their own permissions, and delete themselves from an account.
User: A user has accepted an invitation to access an account owner’s integrations, and a user's access levels are defined by the account owner or an admin.

When you create an integrator.io account, you are the account owner of an empty environment. You can invite others to help manage and monitor the integrations you build within your environment, or accept an invitation to be a user of another account owner’s account.

User invitation criteria matrix

You can invite only those users who meet certain requirements that allow them to be eligible to accept an invitation to another account. The following table explains those conditions.

Is this user an account owner?	License	Does this user have integrations in their current account?	Have other users accepted invitations to join this user's account?	Is this user eligible to receive and accept an invitation to another account?
Yes	Free	No	No	Yes
No	Free	No	No	Yes
Yes	Free	Yes	Yes	No
Yes	Free	Yes	No	No
Yes	Free	No	Yes	No
Yes	Licensed	No	No	No
Yes	Licensed	No	Yes	No
Yes	Licensed	Yes	Yes	No
Yes	Licensed	No	Yes	No
Yes	Licensed	Yes	No	No

If you accept an invitation to join another account owner’s environment, you become a user of their environment, and you are no longer an account owner. The account owner or an administrator of the environment can grant you manage or monitor permissions to work on integrations.

Available permissions

You can assign a user with one of four permission types: admin, manage, monitor, and custom.

Admin: Admin permissions allow a user to perform all tasks available to an account owner except changing account owner permissions or switching account ownership to another user. This includes:
- editing account settings
- editing all resources and integrations (current and future)
- inviting or managing users
- troubleshooting flow errors
Manage: Manage permissions allow users to change fundamental settings related to all integrations in an account. A user with manage permissions can't view or edit account settings, invite users, or change permissions for users, but a user with manage permissions can:
- Edit all resources and integrations (current and future)
- Troubleshoot flow errors
Monitor: A user with monitor permissions can only view settings that can be changed by a user with manage permissions. A user with monitor permissions can't modify integrations, flows, or flow steps; they can't enable or disable flows; view or modify account settings, connections, or API tokens. Monitors also can't invite users or change user permissions. However, a user with monitor permissions can:
- View all integrations (current and future)
- Run flows
- Retry and resolve errors and edit retry data
Custom: A user with custom permissions can have some hybrid of both manage and monitor access to specific integrations. An account owner or admin can vary the user's manage or monitor permission settings from integration to integration. This role is ideal for users who should not see all integrations in an account, but need some level of monitor or manage access over selected integrations, (contractors for example). A user with custom permissions can:
- Manage only the integration(s) selected by the admin or account owner
- Monitor only the integration(s) selected by the admin or account owner

- Monitor all current and future integrations and manage only integration(s) selected by the admin or account owner

Note: If a user with custom permissions has both both manage and monitor access over a specific integration, manage permissions will be applied.

You can assign these permissions to a user at the account level or the integration level. For a detailed list of options available for either permission type, see Account access level matrix or Integration access level matrix.

You can grant manage or monitor permissions at the account-level or the integration-level:

Account-level: The manage or monitor permissions apply to all current and future integrations in the account.
Integration-level: The manage or monitor permissions only apply to integrations chosen by the account owner.

The following diagram represents a typical architecture for user and integration management in integrator.io.

In the above diagram, the account owner has assigned permissions to five users:

User 1: has manage permissions over all integrations in the account.
Users 2 and 3: have monitor permissions over all integrations in the account.
User 4: has custom permissions and can only monitor one or more specific integrations selected by the account owner or an admin.
User 5: has custom permissions and can only manage one or more specific integrations selected by the account owner or an admin.

The diagram below illustrates the default availability of the integration-level permissions when you assign account level permissions to an integrator.io user.

Example: If you assign monitor permissions to a user, the user will be able monitor all integrations in the account. However, if you want the user to manage a specific integration, you can assign the manage permission to the user for that specific integration.

In the above diagram, each user’s permissions are configured as follows:

User 1: Account-level monitor: Has monitor permissions for all integrations in the account. This user has no limits on integration monitor permissions, but the account owner can grant this user integration-level manage permissions for specific integrations.
User 2: Account-level manager: Has both manage and monitor permissions for all integrations in the account. This user has no limits on integration-level monitor and manager permissions.
User 3: Integration-level monitor: Has monitor permissions for one or more integrations as granted by the account owner, but the account owner can grant this user integration-level manager permissions for specific integrations.
User 4: Integration-level manager: Has both manager and monitor permissions for one or more integrations as granted by the account owner.

Assign permissions to a new user

An account owner or admin can use the following steps to assign permissions to a new user:

Click the avatar icon in the upper right corner of integrator.io.
Click My Account (or My Profile if you are an admin).
Click the Users tab.
Click +Invite User in the upper right.

Enter the user's email, and select the one of the following options from the Roles & permissions section:

Note: You can assign duplicate permissions to multiple users at once by entering each of their email addresses separated by commas in the Email field.

- Admin: The user has all the same permissions as an account owner, but can't transfer account ownership.
- Manage all: The user can view and modify all integrations in the account.
- Monitor all: The user can only view all integrations in the account.
- Custom: The account owner selects which integrations the user can view or modify. If you select this option, the Monitor integrations and Manage integrations drop-down menus allow you to select the integrations the user can manage or monitor.
- Security: You can additionaly require either single sign-on (SSO) or multifactor authentication (MFA) with the toggles in the Security section.

Account owner or administrator access

The following table displays the components available for manage and monitor account owner or administrator permissions.

Integration resource	Account owner or administrator permissions
Connections	Create, view, modify, delete
Exports	Create, view, modify, delete
Imports	Create, view, modify, delete
Flows	Create, view, modify, delete
Flow groups	Create, view, modify (assign or remove flows), delete
Async helpers	Create, view, modify, delete
Custom integrations	Create, view, modify, delete
Integration Apps and templates	Install (Account owner only), view, modify, delete
Stacks	Create, view, modify, delete
Tokens	Create, view, modify, delete
Invite users	Yes
User management screen	View, modify
Recycle bin	Create, view, modify, delete
Manage jobs	Yes
Revoke user access	Yes
All users of the account	Create, view, modify, delete
Roles assigned to users	Create, assign, view, modify, delete
Revisions	Create, view

Account-level access

The following table displays the components available for manage and monitor account-level permissions. Access to components with an asterisk (*) requires the user to enable Developer mode.

Integration resource	Access level
	Manage	Monitor
Connections	Create, view, modify, delete	View
Exports	Create, view, modify, delete	View
Imports	Create, view, modify, delete	View
Flows	Create, view, modify, delete	View
Flow groups	Create, view, modify (assign or remove flows), delete	View
Async helpers*	Create, view, modify, delete	View
Custom integrations	Create, view, modify, delete	View
Integration Apps and templates	View, modify	View
Stacks*	Create, view, modify, delete	View
Invite users	No	No
User management screen	N/A	N/A
Recycle bin	Create, view, modify, delete	View
Manage jobs	Create, view, modify, delete	Create, view, modify, delete
Revoke user access	No	No
All users of the account	N/A	N/A
Roles assigned to users	N/A	N/A
Revisions	Create, view	View

Integration-level access

The following table displays the components available for manage and monitor integration-level permissions. Access to components with an asterisk (*) requires the user to enable Developer mode.

Integration resource	Access level
	Manage	Monitor
Connections	Create, view, modify, delete	View
Exports	Create, view, modify, delete	View
Imports	Create, view, modify, delete	View
Flows	Create, view, modify, delete	View
Flow groups	Create, view, modify (assign or remove flows), delete	View
Resource aliases	Create, view, modify, delete	View
Async helpers*	Create, view, modify, delete	View
Custom integrations	View, modify	View
Integration Apps and templates	View, modify, delete	View
Stacks*	View	View
Invite users	No	No
User management screen	N/A	N/A
Manage jobs	Create, view, modify, delete	Create, view, modify, delete
Revoke user access	No	No
All users of the account	N/A	N/A
Roles assigned to users	N/A	N/A
Revisions	Create, view	View

View permissions for existing users

Use the following steps to see the permissions settings for users of your account:

Click the avatar icon in the upper right corner of integrator.io.
Click My Account (or My Profile if you are an admin).
Click the Users tab.
The Role column displays one of the following permissions:
- Owner: the account owner
- Admin: has admin permissions for the account
- Monitor all: can monitor all integrations in the account
- Manage all: can manage all integrations in the account
- Custom: has manage or monitor permissions for only the integrations selected by the account owner or an admin

Modify permissions

Use the following steps to modify permissions for an existing user:

Click the avatar icon in the upper right corner of integrator.io.
Click My Account (or My Profile if you are an admin).
Click the Users tab.
Click the elipses (...) in the Actions column next to the user whose permissions you want to change, and click Manage user.

Note: If you are an admin, you will not see the Make account owner option.

Select the one of the following options from the Roles & permissions section:
- Admin: The user has all the same permissions as an account owner, but can't transfer account ownership.
- Manage all: The user can view and modify all integrations in the account.
- Monitor all: The user can only view all integrations in the account.
- Custom: The account owner selects which integrations the user can view or modify. If you select this option, the Monitor integrations and Manage integrations drop-down menus allow you to select the integrations the user can manage or monitor.

Verify your permissions

To verify that you are an account owner, click the avatar icon in the upper right corner of integrator.io.

You can verify your permission level for any integration by hovering over the key icon.

Take the Fundamentals: integrator.io Basics class to learn more about this topic.

Comments

2 comments

Rob Riccio

July 10, 2023 17:37

Edited
Tom Santiago should Manager Level users be able to submit tickets? I didn't see that addressed in the article as to who has that authority, if it is reserved only for Admins. Had a manager user who tried and was redirected from within .io and I wasn't sure if it's a glitch, or by design.
0
Balasubramanian Mahadevan Community manager Senior Technical Writer

July 11, 2023 07:06
Rob Riccio If you are talking about submitting support tickets, I believe it is not restricted based on a role. Any user with any role can submit a support ticket. You can find more information about this in the Submit a support ticket article.
0