• Glossary
  • Support
  • Downloads
  • DataStax Home
Get Live Help
Expand All
Collapse All

DataStax Streaming Home

Astra Streaming Documentation

    • Getting Started
    • Developing
      • Using Pulsar binaries with Astra Streaming
      • Using curl with Astra Streaming
      • Astra CLI
      • Astra Streaming Functions
      • Starlight for Kafka
      • Starlight for RabbitMQ
      • Producing and consuming messages
        • Astra Portal
        • Pulsar Cli
        • Client Applications
          • Java
          • Python
          • C#
          • Golang
          • Node.js
      • Change data capture (CDC)
        • CDC for Astra DB
    • Operations
      • Geo-replication
      • Astra Streaming Limits
      • Astra Streaming Pricing
      • Astra Streaming Regions
      • Scrape Astra Streaming metrics with Prometheus
      • Manage Tokens
      • Enrollment FAQ
    • Guides and Examples
      • FAQs
      • Manage permissions
        • Use custom roles
      • Pulsar subscriptions
        • Exclusive
        • Shared
        • Failover
        • Key_shared
    • API Docs
      • Using the DevOps v2 API
      • API References
    • IO Connectors
    • Astra Streaming release notes
  • Astra Streaming Documentation
  • Guides and Examples
  • Manage permissions
Edit this Page

User permissions

Default and custom roles allow admins to manage unique permissions for users based on your organization and database requirements.

You can manage roles using the Astra Portal or the DevOps API.

Astra Streaming Organization permissions

Console name Description DevOps API parameter

Read Audits

Enables read and download audits.

org-audits-read

Write IP Access List

Create or modify an access list using the DevOps API or the Astra console.

accesslist-write

Delete Custom Role

Delete of custom role.

org-role-delete

Manage Streaming

Create a Streaming Service using the DevOps API or the Astra console.

org-stream-manage

Write Organization

Create new organizations or delete an existing organization. Hides manage org and org settings.

org-write

Read Billing

Enables links and access to billing details page.

org-billing-read

Read IP Access List

Enables links and access to access list page.

accesslist-read

Read User

Access to viewing users of an organization.

org-user-read

Read Organization

View organization in the Astra console.

org-read

Read Custom Role

See a custom role and its associated permissions.

org-role-read

Read External Auth

See security settings related to external authentication providers.

org-external-auth-read

Read Token

Read token details.

org-token-read

Delete Custom Role

Delete of custom role.

org-role-delete

Notification Write

Enable or disable notifications in organization notification settings.

org-notification-write

Write Billing

Enables links and ability to add or edit billing payment info.

org-billing-write

Write User

Add, create, or remove a user using the DevOps API or the Astra console.

org-user-write

Write Custom Role

Create custom role.

org-role-write

Write External Auth

Update security settings related to external auth providers.

org-external-auth-write

Write Token

Create application token.

org-token-write

Astra DB Permissions

For documentation about Astra DB user permissions, see Astra DB User Permissions.

Guides and Examples Use custom roles

General Inquiries: +1 (650) 389-6000 info@datastax.com

© DataStax | Privacy policy | Terms of use

DataStax, Titan, and TitanDB are registered trademarks of DataStax, Inc. and its subsidiaries in the United States and/or other countries.

Apache, Apache Cassandra, Cassandra, Apache Tomcat, Tomcat, Apache Lucene, Apache Solr, Apache Hadoop, Hadoop, Apache Pulsar, Pulsar, Apache Spark, Spark, Apache TinkerPop, TinkerPop, Apache Kafka and Kafka are either registered trademarks or trademarks of the Apache Software Foundation or its subsidiaries in Canada, the United States and/or other countries.

Kubernetes is the registered trademark of the Linux Foundation.

landing_page landingpage