Understanding Role Permissions
Akto uses a role-based access control system to manage user permissions. Each role has a specific set of permissions that determine what actions a user can perform within the platform.
Role Types
Admin
Full system administrator with complete control over all features. Can manage users, settings, and perform all administrative actions.
Security Engineer
Primary role for security testing and analysis. Has full access to testing features and API Inventory.
Developer
Technical role focused on integration and development. Has view access to security features and can manage integration settings.
Guest
Basic viewer role with view-only access to most features. Can view but cannot modify API Inventory.
Role Hierarchy
Admin
βββ Security Engineer
βββ Developer
βββ Guest
Feature Access & Descriptions
Legend
β Edit & View ποΈ View Only
API Inventory
API Collections
β
β
ποΈ
ποΈ
Manage and organize API endpoints
Traffic Filters
β
β
ποΈ
ποΈ
Configure API traffic filtering rules
Sample Data
β
β
ποΈ
ποΈ
Access to API sample data
Tags
β
β
ποΈ
ποΈ
Organize resources with tags
Testing Capabilities
Test Run
β
β
ποΈ
ποΈ
Initialize security tests
Test Results
β
β
ποΈ
ποΈ
View and analyze test outcomes
Test Editor
β
β
ποΈ
ποΈ
Create/modify test cases
Issues
β
β
ποΈ
ποΈ
Manage security issues
Settings
Integrations
β
ποΈ
β
ποΈ
Manage third-party integrations
Billing
β
ποΈ
ποΈ
ποΈ
Access billing and subscription
User Management
β
ποΈ
ποΈ
ποΈ
Manage user accounts and roles
Monitoring & Analysis
Metrics
β
β
ποΈ
ποΈ
View system performance metrics
Logs
β
β
ποΈ
ποΈ
Access system logs
Sensitive Data
β
β
ποΈ
ποΈ
Manage sensitive data detection
Common Features
Ask GPT
β
β
ποΈ
ποΈ
AI-assisted analysis
Custom Roles
Organizations can create custom roles to meet specific business needs by combining permissions from different standard roles. To create and manage custom roles, check the Custom roles documentation.
Last updated
Was this helpful?