Skip to main content

CET roles and permissions

Harness employs Role-Based Access Control (RBAC) to manage user and group access to Harness resources based on their roles. RBAC enhances security and operational efficiency.

The Harness Platform has a three-level hierarchical structure. The three levels, or scopes, are Account, Organization (Org), and Project. An Account contains Organizations and Projects. An Organization contains Projects.

To learn more about access control in Harness, go to RBAC in Harness.

This section describes the roles available for Continuous Error Tracking (CET).

CET specific role

The CET Admin default role is available specifically for CET at the Account, Organization (Org), and Project levels. The CET Admin role includes the following permissions:

  • View tokens
  • Create/edit tokens
  • Revoke tokens
  • View critical events
  • Create/edit critical events
  • Delete critical events
  • View Agents

Harness Platform roles and CET permissions

The following default Harness Platform roles come with specific CET permissions:

Account Admin role

The Account Admin role includes the following CET specific permissions:

  • View tokens
  • Create/edit tokens
  • Revoke tokens
  • View critical events
  • Create/edit critical events
  • Delete critical events
  • View Agents

Account Viewer role

The Account Viewer role includes the following CET specific permissions:

  • View tokens
  • View critical events
  • View Agents

Org Admin role

The Org Admin role includes the following CET specific permissions:

  • View tokens
  • Create/edit tokens
  • Revoke tokens
  • View critical events
  • Create/edit critical events
  • Delete critical events
  • View Agents

Org Viewer role

The Org Viewer role includes the following CET specific permissions:

  • View tokens
  • View critical events
  • View Agents

Project Admin role

The Project Admin role includes the following CET specific permissions:

  • View tokens
  • Create/edit tokens
  • Revoke tokens
  • View critical events
  • Create/edit critical events
  • Delete critical events
  • View Agents

Project Viewer role

The Project Viewer role includes the following CET specific permissions:

  • View tokens
  • View critical events
  • View Agents

See also

The following topics can help you understand how to implement access control in Harness: