Roles and Permissions

Every user who belongs to a tenant has a tenant role that controls what they can do inside that tenant. Tenant roles are assigned from Tenant Admin > Users and are independent of a user's global role (such as Global Admin).

Studio has three tenant roles:

Read-Only — can view Actions, Steps, and Runs, but cannot change anything or start a run.
User — can view and edit Actions and Steps, and can start runs.
Admin — everything a User can do, plus tenant administration (managing users, apps, and tenant settings).

Permission matrix

Capability	Read-Only	User	Admin
View Actions and Steps	Yes	Yes	Yes
View Runs and run history	Yes	Yes	Yes
Create, edit, duplicate, or delete Actions	No	Yes	Yes
Add, edit, or delete Steps	No	Yes	Yes
Publish or enable/disable an Action	No	Yes	Yes
Import Actions	No	Yes	Yes
Create, edit, or delete Skills	No	Yes	Yes
Start a run (execute an Action)	No	Yes	Yes
Delete, archive, or reprocess Runs	No	Yes	Yes
Manage tenant users and roles	No	No	Yes
Manage apps and tenant settings	No	No	Yes
View and export the Audit Log	No	No	Yes

About Read-Only access

Read-Only is intended for stakeholders who need visibility into automations without the ability to change or trigger them — for example auditors, analysts, or business reviewers.

A Read-Only user sees the same Actions and Runs as other tenant members, but the editing and execution controls are hidden or disabled. The restriction is enforced by the Studio backend, so Read-Only access cannot be bypassed by the browser.

Read-Only does not include access to the Audit Log, which is Admin-only. An auditor who needs to review or export the change history themselves must be given the Admin role; otherwise a Tenant Admin produces the export for them.

Changing a user's role

Tenant Admins change a user's role from Tenant Admin > Users by selecting a new role in the user's role dropdown. New tenant members default to the User role.

All guides