Create roles
From Access Control > Roles, you can create custom user roles that determine cluster management permissions, data access permissions, or a combination of both.
-
Management roles - Management roles define user access to the cluster’s admin console and API.
-
Data access controls - Data access controls define the permissions each role has for each database in the cluster.
Default management roles
Redis Enterprise Software includes five predefined roles that determine a user’s level of access to the admin console and REST API.
- None - Cannot access the admin console or use the REST API
- DB Viewer - Read database settings
- DB Member - Administer databases
- Cluster Viewer - Read cluster settings
- Cluster Member - Administer the cluster
- Admin - Full cluster access
For more details about the privileges granted by each of these roles, see admin console permissions or REST API permissions.
Create roles for database access
To create a role that grants database access to users but blocks access to the Redis Enterprise admin console and REST API, set the Cluster management role to None.
To define a role for database access:
-
From Access Control > Roles, you can:
-
Point to a role and select
to edit an existing role.
-
Select + Add role to create a new role.
-
-
Enter a descriptive name for the role. This will be used to reference the role when configuring users.
-
Choose a Cluster management role. The default is None.
-
Select + Add ACL.
-
Choose a Redis ACL and databases to associate with the role.
-
Select the check mark to confirm.
-
Select Save.