Organization Configuration Permissions

Entity	Actions	Actions & Description
Organization Management	View Edit	Allowing viewing/editing of the organization tabs: Users, Roles, Cost Centers, Cloud Accounts Customers (MSP) Channels, Linked Accounts, Settings
User Management	List Create View Edit Impersonate Run As	Managing users in the organization. This is a subset of the organization management permission. List - List the users in the organization Create - Create/Invite new users View - View user details Edit - Edit user details Impersonate - Be able to impersonate users within the organization and work on their behalf Run As - Ability to choose a user (and therefore scope) to run Alerts, Budgets, Reports, Dashboards. See Sharing and 'Run As' Options
Accounts	List Create View Edit	Onboarding Accounts and managing Accounts, Including BYOD accounts. This is a subset of the organization management permission. List - List the accounts in the organization Create - Onboard new accounts. View - View the details of existing accounts Edit - Edit the details of accounts.
Cost Centers	List Create View Edit	Cost Center management tab. This is a subset of the organization management permission. List - List the cost centers. Create - Create a new cost center. View - View the details and content (sub accounts) of a cost center. Edit - Edit name and content of a cost center.
Roles	List Create View Edit	The roles tab. This is a subset of the organization management permission. List - List the roles in the organization. Create - Create a new role. View - View a role's details Edit - Edit role details, including name, assigned users, sub-roles, permissions and data access

Business Entity Permissions

Entity permissions conincide with data access permissions. The user can perform the relevant action(s) within the data scope (data access) she's allowed to work on.

Entity	Action	Description
Cost & Usage Explorer	NA	Always visible You view the data according to the data access you have in your role.
Anomaly detection	NA	Always visible You view the data according to the data access you have in your role. You can add and edit comments, as well as change the user status of the anomalies you see.
Alerts	List Create View Edit	The alerts permission controls the CUE and anomaly detection alerts. List - List existing alerts Create - Create a new CUE or anomaly detection alert, delete CUE and anomaly detection Alerts. View - View the configuration of an existing CUE or anomaly detection Alert Edit - Edit the configuration and recipients of CUE or anomaly detection Alerts
Budgets	List Create View Edit	The budgets permission controls access to the budget entities, account based and multi cloud based, and budget alerts. List - List budgets Create - Create budgets and budget alerts, delete budgets View - View existing budgets and budget alerts Edits - Edit existing budgets and budget alerts
Commitments	List View	The Commitments permissions controls access to SPs, RIs, and the SP simulator, for the relevant cloud providers. List - List existing SPs and RIs View - View the details of existing SPs and RIs
Cost Allocation	List Create View Edit	The cost allocation permission control access to: Views, Virtual Tags, Filter Groups, Business Mappings, Business Mapping Groups, Business Mapping Global Groups Enrichment Tags List - List existing entities of the above mentioned types Create - Create new entities of these types, delete entities View - View the details of such entities Edit - Edit the details of such entities
Dashboards	List Create View Edit	The dashboards permission control access to: Dashboards, instances, templates, template instances, panels. List - List any of the above mentioned entities Create - Create (or delete) such entities View - View the details of a specific entity Edit - Edit the details of a specific entity
Recommendations	List View Edit	The recommendation permission controls access to: Recommendations, Recommendation reports, recommendation user actions, recommendation preferences List - List recommendations View - View recommendation details, add comments to a recommendation Edit - Activate user actions (done/exclude/star/label) on a recommendation, create and edit views, create and edit recommendation reports, edit recommendation type preferences.
Reports	List Create View Edit	The reports permission controls the CUE reports. List - List existing CUE reports Create - Create a new CUE report, delete CUE reports View - View and existing CUE report Edit - Edit parameters and sending options of a CUE report

MSP Specific Permissions

Entity	Action	Description
Reseller Customers	List Create View Edit	The reseller customers permission controls the management of MSP customers: Customers, Customer Accounts, Billing rules, Credits, History, customer reports, Re-billing preferences. List - List any of the above entities Create - Create any of the above entities. Including create new customers, new accounts, rules and credits. As well as delete any of the entities. View - View a specific entity Edit - Edit the details of all entities. Including billing rules, credits, re-billing preferences and so on.

Entity

Action

Description

Reseller Customers

List Create View Edit

The reseller customers permission controls the management of MSP customers: Customers, Customer Accounts, Billing rules, Credits, History, customer reports, Re-billing preferences.

List - List any of the above entities
Create - Create any of the above entities. Including create new customers, new accounts, rules and credits. As well as delete any of the entities.
View - View a specific entity
Edit - Edit the details of all entities. Including billing rules, credits, re-billing preferences and so on.