Users and Roles
Each Satori account can be accessed by multiple users. Each user is assigned with a role to reflect their responsibilities. Service accounts are used for API access, and each service account is assigned its own role.
Satori provides multiple roles for accessing the management console:
|Full account access including user and DAC management. Satori recommends limiting the number of admins to a minimumn.
|Full account access not including user and DAC management. Satori editors are typically tasked with creating and managing datasets.
|Read only account access.
|Delegated admins for specific datastes. They have edit access to assigned datasets including creation and usage of security policies and masking profiles.
|All Satori users have access to the Satori Data Portal
Satori User Types
There are 2 types of users in Satori:
- Account User - The account user is created by the account admins in the management console. Account users are required to use two-factor authentication which must be configured at the first time the log in.
- Identity Provider User - The identity provider user is created when a new user logins via SSO (see SSO section).
Service accounts are similar to users but can only be used for API access and process automation. To create a service account, go to the Settings and select the Service Accounts tab in the User Management view.
Once you have created the service account, copy the service account ID and key, which you will then use to obtain an authentication token.