Managing Users
Invite a User
Send an invitation to their email address. You can either invite users to be an Account Admin using the Manage Account page, or invite users with workspace level permissions by going to the Users tab.
Assign a Role
Define what each user can do by assigning them one of the available roles. See the table below for an in-depth breakdown.
Manage Seats
Workspaces have a limited number of seats. You can track usage at the top of the Users page or from the Users widget on the Home page.
Roles and Permissions
Each role controls access to a specific set of platform features. Roles are scoped either to the entire account or to an individual workspace.Account Admin
Account Admin
Full control over the entire account and all workspaces under it. Reserved for owners and senior administrators.
| Resource | Access | Details |
|---|---|---|
| Account | Full | Invite and remove account-level users, change account-wide settings |
| Workspaces | Full | Create, rename, and delete workspaces; manage users across any workspace |
| Knowledge Bases | Full | Create, edit, delete; upload, update, and remove data sources and files |
| Integrations | Full | Create, edit, and delete integrations |
| Agents | Full | Create, configure, and delete agents |
| Prompts | Full | Create, edit, and delete prompts |
| Skills | Full | Create, edit, and delete skills |
| Channels | Full | Create, edit, and delete channels |
| Campaigns | Full | Create, schedule, and dispatch outbound campaigns |
| Scheduled Tasks | Full | Configure, review, and tear down scheduled tasks |
| Evaluations | Full | Run evaluations |
| Reports & Insights | Full | Manage reports and insights |
| Tags | Full | Manage tags across the workspace |
| Billing | Full | View invoices and usage; update payment methods and subscription |
| Chat | Full | View, send, and delete chat threads |
Workspace Admin
Workspace Admin
Full control over a specific workspace. Cannot access account-level settings or other workspaces.
| Resource | Access | Details |
|---|---|---|
| Workspace | Full | Invite, remove, and reassign roles for users within this workspace; update workspace |
| settings | ||
| Knowledge Bases | Full | Create, edit, delete; upload, update, and remove data sources and files |
| Integrations | Full | Create, edit, and delete integrations |
| Agents | Full | Create, configure, and delete agents |
| Prompts | Full | Create, edit, and delete prompts |
| Skills | Full | Create, edit, and delete skills |
| Channels | Full | Create, edit, and delete channels |
| Campaigns | Full | Create, schedule, and dispatch outbound campaigns |
| Scheduled Tasks | Full | Configure, review, and tear down scheduled tasks |
| Evaluations | Full | Run evaluations |
| Reports & Insights | Full | Manage reports and insights |
| Tags | Full | Manage tags across the workspace |
| Billing | Full | View invoices and usage; update payment methods and subscription |
| Chat | Full | View, send, and delete chat threads |
Agent Manager
Agent Manager
Designed for users who build and operate AI agents end-to-end. Has full control over the entire agentic surface of the workspace.
| Resource | Access | Details |
|---|---|---|
| Workspace | Read Only | View workspace name and basic settings; cannot invite or remove users |
| Knowledge Bases | Full | Create, edit, delete; upload, update, and remove data sources and files |
| Integrations | Full | Create, edit, and delete integrations |
| Agents | Full | Create, configure, and delete agents |
| Prompts | Full | Create, edit, and delete prompts |
| Skills | Full | Create, edit, and delete skills |
| Channels | Full | Create, edit, and delete channels |
| Campaigns | Full | Create, schedule, and dispatch outbound campaigns |
| Scheduled Tasks | Full | Configure, review, and tear down scheduled tasks |
| Evaluations | Full | Run evaluations |
| Reports & Insights | Full | Manage reports and insights |
| Tags | Full | Manage tags across the workspace |
| Chat | Full | View, send, and delete chat threads |
Content Manager
Content Manager
Designed for users who curate knowledge bases, integrations, and tags. Can view the agentic surface but cannot modify it.
| Resource | Access | Details |
|---|---|---|
| Workspace | Read Only | View workspace name and basic settings; cannot invite or remove users |
| Knowledge Bases | Full | Create, edit, delete; upload, update, and remove data sources and files |
| Integrations | Full | Create, edit, and delete integrations |
| Tags | Full | Manage tags across the workspace |
| Agents | Read Only | View agents and their configurations |
| Prompts | Read Only | View prompts |
| Skills | Read Only | View skills |
| Channels | Read Only | View channels |
| Scheduled Tasks | Read Only | View scheduled tasks |
| Evaluations | Read Only | View evaluations |
| Reports & Insights | Read Only | View reports and insights |
| Chat | Full | View, send, and delete chat threads |
Agent Reader
Agent Reader
Read-only mirror of Agent Manager. Designed for auditors, QA reviewers, and stakeholders who need to inspect agents and the surrounding configuration without making changes. Carries full thread administration so they can review and clean up conversation history.
| Resource | Access | Details |
|---|---|---|
| Workspace | Read Only | View workspace name and basic settings; cannot invite or remove users |
| Knowledge Bases | Read Only | View knowledge bases and data sources |
| Integrations | Read Only | View integrations |
| Agents | Read Only | View agents and their configurations |
| Prompts | Read Only | View prompts |
| Skills | Read Only | View skills |
| Channels | Read Only | View channels |
| Campaigns | Read Only | View campaigns |
| Scheduled Tasks | Read Only | View scheduled tasks |
| Evaluations | Read Only | View evaluations |
| Reports & Insights | Read Only | View reports and insights |
| Tags | Read Only | View tags |
| Chat | Full | View, send, and delete chat threads |
Campaign Manager
Campaign Manager
Designed for users who own outbound campaigns end-to-end. Reads adjacent data needed to configure campaigns (channels, reports, agents) but does not manage them.
| Resource | Access | Details |
|---|---|---|
| Workspace | Read Only | View workspace name and basic settings; cannot invite or remove users |
| Campaigns | Full | Create, schedule, and dispatch outbound campaigns; manage contacts and suppression lists |
| Channels | Read Only | View channels available for campaign delivery |
| Reports & Insights | Read Only | View campaign reports |
| Agents | Read Only | View agents and their configurations |
Report Admin
Report Admin
Designed for users who own reports and insights. Reads the data that feeds reports (evaluations, agents) and carries full thread administration to inspect and clean up conversation history.
| Resource | Access | Details |
|---|---|---|
| Workspace | Read Only | View workspace name and basic settings; cannot invite or remove users |
| Reports & Insights | Full | Create, run, and delete reports and insights |
| Evaluations | Read Only | View evaluations |
| Agents | Read Only | View agents and their configurations |
| Chat | Full | View, send, and delete chat threads |
Billing Admin
Billing Admin
Finance-only role. Can only access billing and basic workspace information. Has no access to agents, data, or chats.
| Resource | Access | Details |
|---|---|---|
| Workspace | Read Only | View workspace name and basic settings; cannot invite or remove users |
| Billing | Full | View invoices and usage; update payment methods and subscription |
Chat User
Chat User
Basic end-user role for interacting with agents. Cannot modify any workspace settings, data, or agents.
| Resource | Access | Details |
|---|---|---|
| Workspace | Read Only | View workspace name and basic settings; cannot invite or remove users |
| Agents | Read Only | View agents and their configurations |
| Chat | Full | View, send, and delete chat threads |
Best Practices
Least Privilege
Only assign the access needed for a user’s role. Avoid over-provisioning permissions.
Review Regularly
Periodically review assigned roles to ensure responsibilities still align with permissions.
Remove Inactive Users
Free up seats and reduce security exposure by removing users who are no longer active.
Keep Two Account Admins
Always maintain at least two Account Admins to avoid losing administrative access.