Members
Members are the users granted access to a specific workspace. Each member has an access level that determines what they can do inside the workspace.
Users with the Admin or Operator global role have full access to every workspace and bypass access levels. Users with the Member global role only see the workspaces they are explicitly added to, and only at the access level granted there.
Access levels
There are five access levels. Pick one per member based on the role they play inside this specific workspace. The same user can have different access levels in different workspaces.
| Access level | Can do | Example |
|---|---|---|
| Maintainer | Full control over the workspace except creation and deletion. | Detection lead, workspace owner |
| Collaborator | Posture Management, Security Assets, and Use Cases. No Workspace Settings. | Senior detection engineer |
| Contributor | Read and edit Security Assets and Use Cases. Cannot delete. | SOC analyst, freelance contributor |
| Observer | Read-only. | Auditor, CISO, security peer |
| None | No access. | - |
Admin and Operator users
Access levels only apply to Member users. Admin or Operator users have unrestricted access to every workspace.
Permissions map
See the Permissions page for the exhaustive list of permissions granted at each access level.
Set an access level
The Members page lists every user registered in LogCraft. To grant or change access:
- Open the workspace.
- Go to Settings > Members.
- Find the user in the table.
- Select the desired access level from the dropdown.
The change takes effect immediately. Setting the access level to None revokes access to the workspace without deleting the user account.
To register a new user, see Team.