Predefined Roles

The Controller includes predefined roles for administrators and read-only users. You cannot edit the predefined role permissions, however, you can create new roles. See Create Custom Roles.


Roles	Permissions
Account Owner	Can add or edit users, groups, roles, and the authentication provider. Has most of the account-level permissions and is sometimes known as the account administrator. See Accounts Permission.
Administrator	View and modify components that change state, such as applications, business transactions, dashboards, and so on. Create War Rooms, view business flows, and view and configure scheduled reports. Cannot add or edit users, groups, or roles.
Analytics Administrator	View and grant access to Analytics features, such as creating API keys, creating metrics, creating extracted fields, and granting access for viewing analytics data. Controls which roles have access to specific applications or log source types. The only role in charge of saved searches. Saved searches provide different data access levels to analytics users. See Analytics and Data Security and Transaction Analytics Permissions.
Applications and Dashboards Viewer	View all applications and their dashboards. Cannot edit dashboards (formerly known as the Read-Only User).
Dashboards Viewer	Can view custom dashboards.
DB Monitoring User	View the Database Monitoring UI. Cannot add, edit, or delete database collectors.
DB Monitoring Administrator	View the Database Monitoring UI. Add, edit or delete database collectors.
Server Monitoring Administrator	View the Server Monitoring UI. Configure Service Monitoring features including Service Availability Monitoring.
Server Monitoring User	View Server Monitoring UI. Cannot configure Server Monitoring features.