Team
Users are managed globally, across every workspace. Each user has a global role controlling top-level access to LogCraft; what a user can do inside a workspace is a separate decision made on the Members page.
Each operation on this page requires specific permissions. See Permissions for the authoritative role-to-permission map.
Global roles
There are three global roles. Pick one per user based on what they do with LogCraft across the deployment.
| Role | Scope | When to choose this |
|---|---|---|
| Admin | Full access across the deployment, including server-level operations. | The 1 to 2 platform owners responsible for installing, licensing, upgrading, and configuring the server. |
| Operator | Operates the deployment: workspaces and users. Server-level operations remain reserved for Admin. | Team leads who manage the deployment without owning the server itself. |
| Member | No built-in access. Can only act in workspaces they are explicitly added to, and only at the access level granted there. | The default for every end user: detection engineers, analysts, stakeholders. |
A Member with no workspace access sees nothing
A user created with the Member role and no workspace membership can sign in but sees an empty LogCraft. Add them as a member of at least one workspace through Members.
Create a user
- Open Global Settings > Team.
- Click Create user.
- Fill in the form: Username, Email, Fullname, and Role.
- Set an initial password.
- Click Save.
Communicate the initial password to the user through a secure channel. The user can change it later from their Profile page.
Edit a user
- Open Global Settings > Team.
- Select the user.
- Update any field except the password.
- Click Save.
Delete a user
- Open Global Settings > Team.
- Select the user.
- Click Delete.
Deletion is immediate
This operation cannot be undone and removes the user from every workspace they were a member of while preserving audit log entries authored by the user.