# Users & Roles

{% content-ref url="../../../how-to-guides/manage-users-and-role-based-access" %}
[manage-users-and-role-based-access](https://docs.datasentinel.io/manual/how-to-guides/manage-users-and-role-based-access)
{% endcontent-ref %}

## Management

Users can be managed through both the User Interface or [API](https://docs.datasentinel.io/manual/implementation/platform-usage/api-reference/user) in an efficient manner.

<figure><img src="https://1072624949-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FlcWi6G1jtNuyGT9C0pkc%2Fuploads%2Fq1oNV3MUS9dJbLV2SGCv%2Fusers.png?alt=media&#x26;token=205a96ad-1924-4070-99ce-c3d43a0e0d23" alt=""><figcaption><p>Datasentinel users</p></figcaption></figure>

### LDAP Integration

In addition, the platform supports LDAP configuration for seamless authentication.&#x20;

{% content-ref url="ldap" %}
[ldap](https://docs.datasentinel.io/manual/implementation/platform-usage/configuration/ldap)
{% endcontent-ref %}

{% hint style="warning" %}
Only authentication is managed by a LDAP server.&#x20;

Other properties continue to be configured in the tool.
{% endhint %}

{% hint style="info" %}
In our February 2024 update, we introduced a way to better manage user access. \
Now, users added automatically (using Grafana's LDAP integration) won't have full access until they're assigned a specific role. This can be easily set up in the Global Settings Dashboard, giving you more control over access permissions.
{% endhint %}

### User Privileges

3 privileges are available. A privilege needs to be assigned to a user

<table><thead><tr><th width="196">Privilege</th><th>Description</th></tr></thead><tbody><tr><td>read</td><td><ul><li>Read only access to Datasentinel</li></ul></td></tr><tr><td>read write</td><td><ul><li>Read only access to Datasentinel</li><li>Kill sessions</li></ul></td></tr><tr><td>admin</td><td><ul><li>Read only access to Datasentinel</li><li>Kill sessions</li><li>Agent, PostgreSQL instance management</li><li>User Management</li><li>Datasentinel Configuration</li></ul></td></tr></tbody></table>

*Default: admin*

### Profiles

2 profiles are available. A profile needs to be assigned to a user

<table><thead><tr><th width="207">Profile</th><th>Description</th></tr></thead><tbody><tr><td>developer</td><td><ul><li>Access limited to <a href="../../../features/key-features/session-history">Session History</a> and <a href="../../../features/key-features/top-queries">Top Queries</a> features and <a href="../../../features/key-features/reporting"> Related Reports</a>.</li></ul></td></tr><tr><td>data admin</td><td><ul><li>Access to all dashboards</li></ul></td></tr></tbody></table>

*Default: data admin*

### Live360 Access

Accessibility to the [Live360 module](https://docs.datasentinel.io/manual/features/key-features/live360) (Direct access to instances) can also be configured.&#x20;

*Default: enabled*

### Role Based Access

{% hint style="info" %}
This feature allows users to access to a limited perimeter of PostgreSQL instances, providing greater control over platform security.
{% endhint %}

{% content-ref url="../../../features/other-features/role-based-access" %}
[role-based-access](https://docs.datasentinel.io/manual/features/other-features/role-based-access)
{% endcontent-ref %}