> ## Documentation Index
> Fetch the complete documentation index at: https://docs.pureclarity.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Managing Admin Users

> Complete guide to managing admin users, roles, and permissions in PureClarity for secure team access control

Account owners can manage admin users who access the PureClarity admin panel through comprehensive user and role management tools.

<Info>
  Access user management by navigating to **My Account > Users**. Only users with the Account Owner role can add, edit, or delete other users.
</Info>

## Adding New Users

### User Creation Process

1. Click **Add User** to display the creation form
2. Enter required user information:
   * Full name
   * Email address
   * Assigned roles (see [roles section](#roles) below)
3. Click **Ok** to create the user

<Note>
  New users receive a welcome email with a signup link to create their password and complete account setup.
</Note>

### Welcome Email Process

When a new user is created:

1. **Welcome email** sent automatically to provided email address
2. **Signup link** included for password creation
3. **Account activation** completed by following email instructions

## Editing Existing Users

### User Management Table

<Tip>
  Existing users are displayed in a table format on the user page, showing their current details and available actions.
</Tip>

### Editing User Details

Account Owners can modify:

* **Name** - Update user's display name
* **Email address** - Change login email
* **Roles** - Add or remove role assignments

**To edit a user:**

1. Click the **Edit** button (pen icon) next to the user
2. Modify the required fields in the form
3. Click **Ok** to save changes

## User Account Management

### Password Reset

<Warning>
  Account Owners can send password reset emails to users who have forgotten their credentials.
</Warning>

**To reset a user's password:**

1. Click the **Send password reset** button (lock icon)
2. User receives email with reset instructions
3. Process equivalent to standard forgotten password flow

### User Deletion

**To delete a user:**

1. Click the **Delete user** button (rubbish bin icon)
2. Confirm the deletion action

<Warning>
  User deletion cannot be undone. If future access is needed, the user must be added to the admin again.
</Warning>

## Roles and Permissions

Role-based access control allows you to restrict what users can see and do in the Admin, enabling precise control over team access.

### Available Roles

#### Account Owner

**Full administrative access:**

* Complete access to all admin areas
* Create, update, and delete admin users
* Assign roles to team members
* Manage account settings and billing

#### Admin

**Full operational access:**

* Access to all admin areas
* Cannot create, edit, or delete admin users
* Suitable for senior team members
* Complete feature and configuration access

#### Observer

**View-only access:**

* View all areas of the admin
* Cannot make changes or modifications
* Ideal for stakeholders and reporting roles
* Audit and monitoring capabilities

<Info>
  If you need additional roles that aren't currently available, please contact us with your requirements.
</Info>

## Permission Error Handling

### Insufficient Permissions

When users attempt actions beyond their role permissions:

* **Error banner** displays insufficient permissions message
* **Action blocked** to maintain security
* **Contact admin** guidance provided for access requests

<Tip>
  If team members encounter permission errors, review their role assignments and adjust as needed for their responsibilities.
</Tip>

## Best Practices

### Role Assignment Strategy

1. **Principle of least privilege** - Assign minimum required access
2. **Regular review** - Audit user roles periodically
3. **Clear responsibilities** - Match roles to job functions
4. **Documentation** - Keep records of role assignments

### User Management

**Security recommendations:**

* Remove access for departing team members immediately
* Use strong, unique passwords for all accounts
* Regular review of active users and their roles
* Monitor admin activity for unusual behavior

## Related Documentation

* [Support Policy](/support/general/support-policy)
* [User Explorer](/support/general/user-explorer)
* [Data Explorers Overview](/support/general/data-explorers-overview)
* [Security Disclosure Policy](/support/general/security-disclosure-policy)