Manage Dashboard Access
As an Auth0 tenant administrator, you are responsible for all activities that occur under your Auth0 account and tenants including managing your tenant users. On the Dashboard > Tenant Settings > Tenant Members tab, you can add, change, and remove tenant members (users) in the Auth0 Dashboard.
Tenant member roles
When you add new tenant members, you can assign roles that allow them to fulfill their jobs without putting production applications and sensitive information at risk. For further protection, users can turn on multi-factor authentication (MFA). See Dashboard Access by Role for details on which Dashboard features are accessible with each role.
|Admin||Read and write access to all resources in the Auth0 Dashboard.|
|Editor - Specific Apps||Read and write access to specific applications only.|
|Editor - Connections||Read, write, and create access to all types of connections.|
|Editor - Users||User management operations (create, delete, block, unblock, reset MFA, reset password, update metadata, assign roles, etc.) and access to logs.|
|Viewer - Users||Read-only access to users and logs.|
|Viewer - Config||Read-only access to all configuration settings (applications, APIs, rules, security settings, etc.) except for sensitive information such as secrets, billing, users, and logs.|
Here are some examples of users who may have special access requirements:
Support specialists who need to troubleshoot login issues for your app end users.
Support/IT specialists who need to assign roles and permissions to end users.
Developers who need to troubleshoot their applications in production environments.
Product managers who need to analyze their applications' configuration and usage.
Developers who need to configure settings for their own applications.
Support/IT specialists that need to create connections for their customers in a B2B use case.
Auth0 recommends that you periodically review the list of Auth0 Dashboard tenant members with access to your Auth0 tenant and make sure that:
Each person has a legitimate need for member access.
Members are registered with a company account.
Former employees no longer have access.
There's more than one Dashboard admin.