Create roles with cluster access only

Default management roles

Redis Enterprise Software includes five predefined roles that determine a user's level of access to the Cluster Manager UI and REST API.

DB Viewer - Read database settings

DB Member - Administer databases

Cluster Viewer - Read cluster settings

Cluster Member - Administer the cluster

User Manager - Administer users

Admin - Full cluster access

None - For data access only - cannot access the Cluster Manager UI or use the REST API

For more details about the privileges granted by each of these roles, see Cluster Manager UI permissions or REST API permissions.

Cluster Manager UI permissions

Here's a summary of the Cluster Manager UI actions permitted by each default management role:

Action	DB Viewer	DB Member	Cluster Viewer	Cluster Member	Admin	User Manager
Create, edit, delete users and LDAP mappings	❌ No	❌ No	❌ No	❌ No	✅ Yes	✅ Yes
Create support package	❌ No	✅ Yes	❌ No	✅ Yes	✅ Yes	❌ No
Edit database configuration	❌ No	✅ Yes	❌ No	✅ Yes	✅ Yes	❌ No
Reset slow log	❌ No	✅ Yes	❌ No	✅ Yes	✅ Yes	❌ No
View cluster configuration	❌ No	❌ No	✅ Yes	✅ Yes	✅ Yes	✅ Yes
View cluster logs	❌ No	✅ Yes	✅ Yes	✅ Yes	✅ Yes	✅ Yes
View cluster metrics	❌ No	❌ No	✅ Yes	✅ Yes	✅ Yes	✅ Yes
View database configuration	✅ Yes	✅ Yes	✅ Yes	✅ Yes	✅ Yes	✅ Yes
View database metrics	✅ Yes	✅ Yes	✅ Yes	✅ Yes	✅ Yes	✅ Yes
View node configuration	❌ No	❌ No	✅ Yes	✅ Yes	✅ Yes	✅ Yes
View node metrics	❌ No	❌ No	✅ Yes	✅ Yes	✅ Yes	✅ Yes
View Redis database password	❌ No	✅ Yes	❌ No	✅ Yes	✅ Yes	✅ Yes
View slow log	❌ No	✅ Yes	❌ No	✅ Yes	✅ Yes	❌ No
View and edit cluster settings	❌ No	❌ No	❌ No	❌ No	✅ Yes	❌ No

Action

DB Viewer

DB Member

Cluster Viewer

Cluster Member

Admin

User Manager

Create, edit, delete users and LDAP mappings

❌ No

✅ Yes

Create support package

❌ No

✅ Yes

❌ No

✅ Yes

❌ No

Edit database configuration

❌ No

✅ Yes

❌ No

✅ Yes

❌ No

Reset slow log

❌ No

✅ Yes

❌ No

✅ Yes

❌ No

View cluster configuration

❌ No

✅ Yes

View cluster logs

❌ No

✅ Yes

View cluster metrics

❌ No

✅ Yes

View database configuration

✅ Yes

View database metrics

✅ Yes

View node configuration

❌ No

✅ Yes

View node metrics

❌ No

✅ Yes

View Redis database password

❌ No

✅ Yes

❌ No

✅ Yes

View slow log

❌ No

✅ Yes

❌ No

✅ Yes

❌ No

View and edit cluster settings

❌ No

✅ Yes

❌ No

Create roles for cluster access

You can use the Cluster Manager UI or the REST API to create a role that grants cluster access but does not grant access to any databases.

Cluster Manager UI REST API

To create a role that grants cluster access using the Cluster Manager UI:

From Access Control > Roles, you can:
- Select a role from the list of existing roles to edit it.
- Click + Add role to create a new role.
Add role with name
Enter a descriptive name for the role.
Choose a Management role to determine cluster management permissions.
Select a cluster management role to set the level of cluster management permissions for the new role.
To prevent database access when using this role, do not add any ACLs.
Click Save.

To create a role that grants cluster access using the REST API:

POST /v1/roles
{ 
 "name": "<role-name>",
 "management": "db_viewer | db_member | cluster_viewer | cluster_member | user_manager | admin" 
}

Products

Tools

Get Redis

Connect

Learn

Latest

See how it works

Create roles with cluster access only

Default management roles

Cluster Manager UI permissions

Create roles for cluster access

On this page