RBAC
Role-based access control governs who can view, edit, and administer Applicare. Roles bundle permissions; scopes limit a role to specific services, environments, or tags.
Built-in roles#
| Role | Can |
|---|---|
| Viewer | Read dashboards, alerts, and incidents |
| Responder | Ack/resolve alerts, run approved runbooks |
| Editor | Create alerts, dashboards, and workflows |
| Admin | Manage users, roles, integrations, and settings |
Custom roles#
Clone a built-in role and adjust individual permissions to fit your org. Permissions are grouped by area (monitoring, automation, administration) so you can grant exactly what a role needs.
Scoping#
Attach a scope to a role assignment so it only applies to matching entities:
role: Responder
scope: env:prod AND team:paymentsThis lets the payments on-call resolve payments incidents without touching other teams' services.
Was this page helpful?
Can't find what you need?
Ask ArcIn or reach our support engineers.