Create roles

From access control > roles, you can configure user roles with:

• Management roles - Management roles define user access to the cluster’s admin console and API.
• Data access controls - Data access controls define the permissions each role has for each database in the cluster.

Default management roles

Redis Enterprise Software includes five predefined roles that determine a user’s level of access to the admin console and REST API.

1. None - Cannot access the admin console or use the REST API
2. DB Viewer - Read database settings
3. DB Member - Administer databases
4. Cluster Viewer - Read cluster settings
5. Cluster Member - Administer the cluster
6. Admin - Full cluster access

For more details about the privileges granted by each of these roles, see admin console permissions or REST API permissions.

Create roles for database access

To create a role that grants database access to users but blocks access to the Redis Enterprise admin console and REST API, set the Cluster management role to None.

To define a role for database access:

1. From access control > roles, you can either:

   • Point to a role and select to edit an existing role.

   • Select to create a new role.

2. Enter a descriptive name for the role. This will be used to reference the role when configuring users.

3. Select a Cluster management role. The default is None.

4. Select Add under Redis ACLs .

5. Select the databases the role applies to.

6. Select the Redis ACL to apply to the role.

7. Select the save icon.

8. Select Save.

Next steps

• Assign the role to a user.