User Management
Overview
User management in Tycho Data Osprey ensures that individuals and teams have the appropriate access and permissions across your data domains. With role-based access control (RBAC) and per-domain visibility, you can safely collaborate across departments, facilities, and responsibilities.
Accessing User Management
To manage users:
- Go to the Users section from the left navigation panel
From this view, Domain Owners can:
-
Invite new users to one or more domains
-
Assign or change user roles (Reader, Contributor, Domain Admin)
-
View login history and access attempts
-
Reset passwords or deactivate users
Roles and Permissions
Tycho Data Osprey uses roles to define what each user can see or modify within a domain.
| Role | Permissions |
|---|---|
| Browser | View-only access to assets, issues, dashboards, and lineage. No editing rights. |
| Steward | Can manage checks, assign or update issues, and edit asset metadata (labels, use cases). |
| Domain Owner | Full administrative control within the domain. Can manage users, scanners, workflows, alerts, and domain settings. |
Users can belong to multiple domains and have different roles in each.
Managing Users
Inviting Users
-
Go to Users in the left navigation
-
Click Invite User
-
Enter the email address
-
Click Send Invitation
Users will receive an email with a secure link to join the platform.
Editing Roles
To modify a user's role:
-
Locate the user in the Users section
-
Click the user row to view details
-
Use the Role dropdown to select one of:
-
Reader (same as Browser)
-
Contributor (same as Steward)
-
Domain Admin (same as Domain Owner)
-
Changes take effect immediately and are scoped per domain.
Additional Actions
From the user detail view, Domain Admins can also:
-
Reset password -- forces the user to set a new password at next login
-
Deactivate user -- revokes access but retains audit history
-
View login attempts -- includes timestamp, status, and IP address for security monitoring