Adding & Managing Users
Invite team members and manage user access to your CastellanAI portal.
User Management Overview
CastellanAI supports multiple users with role-based access control. Add team members, assign appropriate roles, and manage permissions to ensure secure collaboration across your security operations team.
| Feature | Description |
|---|---|
| 3-10 Users | Varies by subscription tier |
| 4 Role Types | Admin, Analyst, Viewer, Responder |
| Audit Trail | Complete user activity logging |
How to Add New Users
Step 1: Navigate to User Management
Access the user management interface from your portal dashboard:
- Log in to your CastellanAI portal
- Navigate to Settings -> User Management
- Click the "Add User" button in the top-right corner
Step 2: Enter User Details
Provide the required information for the new user:
| Field | Required | Description |
|---|---|---|
| Email Address | Yes | User's work email for login and notifications |
| Full Name | Yes | First and last name for display in portal |
| Role | Yes | Select appropriate role based on user's responsibilities |
| Team | No | Assign to specific team for organizational grouping |
Step 3: Assign Role & Permissions
Choose the appropriate role for the user based on their job function:
| Role | Access Level |
|---|---|
| Administrator | Full access to all features including user management, configuration, and billing. Can execute all response actions. |
| Security Analyst | View and investigate security events, execute response actions, manage alerts. Cannot change configuration or users. |
| Incident Responder | View events and execute response actions. Limited investigation capabilities. Cannot modify configuration. |
| Viewer | Read-only access to dashboard, events, and reports. Cannot execute actions or modify settings. |
Step 4: Send Invitation
Complete the user creation and send invitation email:
- Review all entered information for accuracy
- Click "Create User" to finalize
- User receives invitation email with setup link
- User has 7 days to accept invitation and set password
You can resend invitation emails from the User Management page if users don't receive them initially.
Role Permissions Comparison
| Permission | Admin | Analyst | Responder | Viewer |
|---|---|---|---|---|
| View Dashboard & Events | Yes | Yes | Yes | Yes |
| Investigate Events | Yes | Yes | Limited | No |
| Execute Response Actions | Yes | Yes | Yes | No |
| Manage Alerts & Rules | Yes | Yes | No | No |
| Generate Reports | Yes | Yes | Yes | Yes |
| Manage Configuration | Yes | No | No | No |
| Add/Remove Users | Yes | No | No | No |
| Manage Billing | Yes | No | No | No |
Managing Existing Users
Edit User Details
Update user information, change roles, or modify team assignments from the User Management page. Click on any user to view details and edit.
Reset Password
Users can reset their own passwords via the login page. Admins can trigger password reset emails from the User Management page if needed.
View User Activity
Track user actions including logins, event investigations, and action executions. Access audit logs from Settings -> User Activity.
Disable/Remove Users
Temporarily disable user accounts to prevent access without deleting them. Permanently remove users when they leave your organization. All user actions remain in audit logs.
Best Practices
- Follow Principle of Least Privilege - Assign the minimum role and permissions required for each user's job function
- Enable Multi-Factor Authentication - Require MFA for all users, especially administrators, to enhance account security
- Review User Accounts Quarterly - Regularly audit user accounts to ensure permissions are still appropriate and remove inactive users
- Monitor User Activity - Regularly review user activity logs to detect unusual behavior or potential security issues
- Offboard Users Promptly - Disable or remove user accounts immediately when employees leave your organization
What's Next?
- Roles & Permissions - Learn about detailed permission settings for each role
- Multi-Factor Auth - Set up MFA to enhance account security for all users
- User Activity Logs - Monitor and audit user actions for compliance and security
Need More User Licenses?
Running out of user seats? Upgrade your subscription to add more team members and enhance your security operations team's capabilities.