Create roles
From access control > roles, you can configure user roles with:
- Management roles - Management roles define user access to the cluster’s admin console and API.
- Data access controls - Data access controls define the permissions each role has for each database in the cluster.
Default management roles
Redis Enterprise Software includes five predefined roles that determine a user’s level of access to the admin console and REST API.
- None - Cannot access the admin console or use the REST API
- DB Viewer - Read database settings
- DB Member - Administer databases
- Cluster Viewer - Read cluster settings
- Cluster Member - Administer the cluster
- Admin - Full cluster access
For more details about the privileges granted by each of these roles, see admin console permissions or REST API permissions.
Create roles for database access
To create a role that grants database access to users but blocks access to the Redis Enterprise admin console and REST API, set the Cluster management role to None.
To define a role for database access:
-
From access control > roles, you can either:
-
Point to a role and select
to edit an existing role.
-
Select
to create a new role.
-
-
Enter a descriptive name for the role. This will be used to reference the role when configuring users.
-
Select a Cluster management role. The default is None.
-
Select Add under Redis ACLs
.
-
Select the databases the role applies to.
-
Select the Redis ACL to apply to the role.
-
Select the save icon.
-
Select Save.