Understanding the different account types available in Pigment is the key to knowing what you and other Members can do within your Workspace. This article will quickly walk you through the 5 different type of user accounts and their permissions.
Account Types
Account types play a big role in adding new Members and creating Applications, there are five types of user Accounts; Primary owner, Security Admin, Workspace Admin, Builder, and Standard User. Account Type permissions are at the Workspace level, meaning that they do not impact a user’s permissions within an Application.
When Members are added, there will be a circle with their initials in it. The color is determined by their Account type. You can click on the Account type heading to sort and view the color assigned to each Account type.
Each account type has a specific set of permissions that determine what actions they can perform within the system or platform. The highest level of control and access is typically granted to the Primary Owner, followed by the Security Admin and Workspace Admin. Builders have specific application-related permissions, and Standard Users have more limited access, primarily to participate in existing applications.
Here's a breakdown of the permissions available for each account type:
-
Primary Owner:
The Primary Owner is a “protected” user which cannot be modified by other Admins. There is only one per workspace. If you want to switch the Primary Owner of your workspace, please see Adding and Switching Accounts in Pigment.
- Manage Members (Add, remove, delete Members)
- Manage Connectors and API Keys
- Create Applications
- Delete Applications (if they are the Application Owner)
- Duplicate Applications (if they have Display Application permission on the application)
- Create / Rename / Delete Shared Scenarios
- Update Color Palette
- View the Plan & Usage page
- Can Impersonate users
- Manage Identity & Provisioning settings
- View all Applications and become Admin
- Manage Application Owners
- Can't be edited or disabled by any other account type
-
Security Admin:
- Manage Members (Add, remove, delete Members)
- Manage Connectors and API Keys
- Create Applications
- Delete Applications (if they are the Application Owner)
- Duplicate Applications (if they have Display Application permission on the application)
- Create / Rename / Delete Shared Scenarios
- Update Color Palette
- View the Plan & Usage page
- Can Impersonate users
- Manage Identity & Provisioning settings
- View all Applications and become Admin
- Manage Application Owners
- Can't be edited or disabled by Workspace Admins
-
Workspace Admin:
- Manage Members (Add, remove, delete Members)
- Manage Connectors and API Keys
- Create Applications
- Delete Applications (if they are the Application Owner)
- Duplicate Applications (if they have Display Application permission on the application)
- Create / Rename / Delete Shared Scenarios
- Update Color Palette
- View the Plan & Usage page
-
Builder:
- Create New Applications
- Duplicate Applications (if they have Display Application permission on the application)
- Delete Applications (if they are also the Application Owner)
-
Standard User:
- Can be added to existing Applications.