Skip to Content
Account ManagementUsers & Roles

Users and Roles

Detectify uses a multi-team role-based access control (RBAC) system that lets you control who can access which assets and what actions they can perform.

Team Structure

Your Detectify account can contain multiple teams. Each team has its own:

  • Assets — The domains, subdomains, and IPs assigned to the team
  • Scan profiles — Scan configurations for the team’s assets
  • Findings — Vulnerability results scoped to the team’s assets

Users can belong to one or more teams, and their role can differ across teams.

Roles

RolePermissions
Account OwnerFull access to all teams, billing, and account settings. Can manage users across the entire account.
AdminFull access within their assigned teams. Can manage team members, assets, scan profiles, and integrations. Cannot access billing or account-level settings.
MemberCan view assets, findings, and scan results within their assigned teams. Can start scans and manage findings. Cannot manage team membership or integrations.
Read-onlyCan view assets and findings within their assigned teams. Cannot start scans, modify configurations, or manage findings.

Inviting Users

To invite a new user:

  1. Navigate to Settings > Users.
  2. Click Invite User.
  3. Enter the user’s email address.
  4. Select the team(s) to add them to.
  5. Assign a role for each team.
  6. Click Send Invitation.

The invited user receives an email with a link to set up their account. The invitation expires after 7 days.

Managing Team Membership

Adding Users to Teams

Users who already have a Detectify account can be added to additional teams:

  1. Navigate to Settings > Teams.
  2. Select the team.
  3. Click Add Member.
  4. Select the user and assign their role for this team.

Changing Roles

To change a user’s role within a team:

  1. Navigate to Settings > Teams.
  2. Select the team.
  3. Find the user in the member list.
  4. Select the new role from the dropdown.

Removing Users

To remove a user from a team, navigate to the team settings and click Remove next to their name. Removing a user from all teams effectively revokes their access to Detectify. To fully delete a user account, contact Detectify support.

Best Practices

  • Follow least privilege — Assign the minimum role needed for each user’s responsibilities
  • Use teams to scope access — Create separate teams for different business units, applications, or environments
  • Review membership regularly — Periodically audit team membership to remove users who no longer need access
  • Use SSO — Centralize authentication through your identity provider for easier user lifecycle management
Last updated on
OverviewSingle Sign-On