From Access Control > Roles, you can create custom user roles that determine cluster management permissions, data access permissions, or a combination of both.

  • Management roles - Management roles define user access to the cluster’s admin console and API.

  • Data access controls - Data access controls define the permissions each role has for each database in the cluster.

Default management roles

Redis Enterprise Software includes five predefined roles that determine a user’s level of access to the admin console and REST API.

  1. None - Cannot access the admin console or use the REST API
  2. DB Viewer - Read database settings
  3. DB Member - Administer databases
  4. Cluster Viewer - Read cluster settings
  5. Cluster Member - Administer the cluster
  6. Admin - Full cluster access

For more details about the privileges granted by each of these roles, see admin console permissions or REST API permissions.

Create roles for database access

To create a role that grants database access to users but blocks access to the Redis Enterprise admin console and REST API, set the Cluster management role to None.

To define a role for database access:

  1. From Access Control > Roles, you can:

    • Point to a role and select The Edit button to edit an existing role.

    • Select + Add role to create a new role.

  2. Enter a descriptive name for the role. This will be used to reference the role when configuring users.

  3. Choose a Cluster management role. The default is None.

  4. Select + Add ACL.

  5. Choose a Redis ACL and databases to associate with the role.

  6. Select the check mark to confirm.

  7. Select Save.

Next steps