From access control > roles, you can configure user roles with:

  • Management roles - Management roles define user access to the cluster’s admin console and API
  • Data access controls - Data access controls define the permissions each role has for each database in the cluster.

Default roles

Redis Enterprise Software includes five pre-built roles to help users who need limited access to the admin console.

  1. DB Viewer - Read database settings
  2. DB Member - Administer databases
  3. Cluster Viewer - Read cluster settings
  4. Cluster Member - Administer the cluster
  5. Admin - Full cluster access

For more details about the privileges for each of these roles, see the following table:

Database Nodes Cluster
View metrics View
config
View
Redis
password
Edit config Reset
slow log
View metrics View
config
View metrics View
config
View logs View
and edit
settings
DB Viewer V V
DB Member V V V V V V
Cluster Viewer V V V V V V V
Cluster Member V V V V V V V V V V
Admin V V V V V V V V V V V

Create roles for database access

To create a user role for users that cannot connect to the Redis Enterprise control plane, assign the “None” management role to the user role.

Note:
We recommend that you set the management role to None for any role used for database access.

To define a role for database access:

  1. From access control > roles, you can either:

    • Point to a role and select Edit to edit an existing role.

    • Select Add to create a new role.

  2. Enter a descriptive name for the role. This will be used to reference the role when configuring users.

  3. Select a Cluster management role. The default is None.

  4. Select Add under Redis ACLs Add.

  5. Select the databases the role applies to.

  6. Select the Redis ACL to apply to the role.

  7. Select the save icon.

  8. Select Save.