From Access Control > Roles, you can create custom user roles that determine cluster management permissions, data access permissions, or a combination of both.

  • Management roles - Management roles define user access to the cluster’s admin console and API.

  • Data access controls - Data access controls define the permissions each role has for each database in the cluster.

Default management roles

Redis Enterprise Software includes five predefined roles that determine a user’s level of access to the admin console and REST API.

  1. DB Viewer - Read database settings
  2. DB Member - Administer databases
  3. Cluster Viewer - Read cluster settings
  4. Cluster Member - Administer the cluster
  5. Admin - Full cluster access
  6. None - For data access only - cannot access the admin console or use the REST API

For more details about the privileges granted by each of these roles, see admin console permissions or REST API permissions.

Create roles for database access

To create a role that grants database access to users but blocks access to the Redis Enterprise admin console and REST API, set the Cluster management role to None.

To define a role for database access:

  1. From Access Control > Roles, you can:

    • Point to a role and select The Edit button to edit an existing role.

    • Select + Add role to create a new role.

    Add role with name
  2. Enter a descriptive name for the role. This will be used to reference the role when configuring users.

    Add role with name
  3. Choose a Cluster management role. The default is None.

  4. Select + Add ACL.

    Add role database acl
  5. Choose a Redis ACL and databases to associate with the role.

    Add databases to access
  6. Select the check mark The Check button to confirm.

  7. Select Save.

    Add databases to access

Next steps