Users, groups, and roles

User management in Admin Manager

SnapLogic Admin Manager introduces the following user account and group management changes:

  • Instead of the term Org, used in Classic Manager, environment refers to the tenant owned and managed by an organization.
  • Three account types:
    • User account: An individual user. This account provides login access to the SnapLogic UI unless configured for API access only. Access to apps such as Designer or AutoSync includes access to Monitor and for Environment admins, Admin Manager. When configured for API access only, the user can't log into the UI, but can use basic authentication to invoke APIs and Triggered Tasks. What users can do in an app depends on their role.
    • Team account: Multiple users can share a team account. One or more users are designated as maintainers. Maintainers receive the initial login and password reset emails for the account. A team account has a normal user role, not an Environment admin role.
    • Service account: For basic authentication, an email and password to use in pipeline parameters, to invoke APIs, or to run Triggered Tasks. Service accounts can't access the UI. Password reset notifications go to the Environment admin who created the account.
  • Two account roles:
    • An Environment admin, known in Classic Manager as an Org admin, manages users, groups, roles, and environment settings. They grant app access to individual users and create groups to enable sharing of resources such as projects, credentials, and data pipelines.
    • A User has access to the applications enabled by the Environment admin.
  • For app access:
    • Designer gives regular users access to APIs and to Monitor. Environment admins receive access to Admin Manager.
    • AutoSync gives regular users access to APIs and to Monitor. Environment admins receive access to Admin Manager.
    • API access only creates an account to use for basic authentication to call public APIs or run tasks. The account can't be used to log into the UI.
  • You can require users to log in with Single Sign-On (SSO), multi-factor authentication (MFA), or either SSO or MFA.
    • SnapLogic supports SSO for Identity Providers (IdPs) that use the Security Assertion Markup Language 2.0 (SAML 2.0) standard.
    • SnapLogic uses Auth0 to support MFA for authenticators that comply with the OAuth 2.0 standard. We support MFA with a one-time passcode. Learn more.