User & Team Management
Add users, create groups, assign roles, and manage workspace access from the Admin Console.
On this page
NATIS uses a role-based access control (RBAC) model with four built-in platform roles. Workspace admins manage users through the Admin Console or via SCIM provisioning for automated user lifecycle management.
Built-In Platform Roles
Role | Capabilities | Assign To — | — | — Workspace Admin | Full platform access, all admin operations | IT/Platform team leads Data Steward | Governance operations, catalog management, audit access | Data governance team Developer | Create/run pipelines, notebooks, dashboards; no admin access | Engineers, analysts, scientists Viewer | Read-only access to permitted data and dashboards | Business users, stakeholders
Adding Users
- 1. Navigate to Admin Console → Users → Invite Users.
- 2. Enter one or more email addresses (comma-separated).
- 3. Select the workspace role (Admin, Data Steward, Developer, or Viewer).
- 4. Optionally add the user to one or more Groups for data access control.
- 5. Click Send Invitation. The user will receive an email to set up their account.
SCIM Provisioning
For enterprise environments with many users, use SCIM 2.0 to automatically sync users and groups from your IdP (Okta, Azure AD, etc.) to NATIS. Enabled under Admin Console → Authentication → SCIM Provisioning.
# SCIM Configuration (set in your IdP)
SCIM Base URL: https://{workspace}.natis.vn/api/2.0/preview/scim/v2
Authorization: Bearer {scim_token}
# Supported SCIM operations:
# POST /Users - Create user
# GET /Users - List users
# PATCH /Users/{id} - Update user
# DELETE /Users/{id} - Deactivate user
# POST /Groups - Create group
# PATCH /Groups/{id} - Add/remove group membersWas this page helpful?
Thanks for your feedback!