Adding & Managing Users
Invite team members and manage user access to your CastellanAI portal.
CastellanAI supports multiple users with role-based access control for secure collaboration across your security operations team.
User Management Overview
| Feature | Description |
|---|---|
| 3-10 Users | Varies by subscription tier |
| 4 Role Types | Admin, Analyst, Viewer, Responder |
| Audit Trail | Complete user activity logging |
How to Add New Users
- 1️⃣ Navigate
- 2️⃣ Enter Details
- 3️⃣ Assign Role
- 4️⃣ Send Invitation
Step 1: Navigate to User Management
Access the user management interface from your portal dashboard:
- Log in to your CastellanAI portal
- Navigate to Settings → User Management
- Click the "Add User" button in the top-right corner
Step 2: Enter User Details
Provide the required information for the new user:
| Field | Required | Description |
|---|---|---|
| Email Address | Yes | User's work email for login and notifications |
| Full Name | Yes | First and last name for display in portal |
| Role | Yes | Select appropriate role based on responsibilities |
| Team | No | Assign to specific team for organizational grouping |
Step 3: Assign Role & Permissions
Choose the appropriate role for the user based on their job function:
| Role | Access Level |
|---|---|
| Administrator | Full access including user management, configuration, and billing |
| Security Analyst | View and investigate events, execute response actions, manage alerts |
| Incident Responder | View events and execute response actions with limited investigation |
| Viewer | Read-only access to dashboard, events, and reports |
Step 4: Send Invitation
Complete the user creation and send invitation email:
- Review all entered information for accuracy
- Click "Create User" to finalize
- User receives invitation email with setup link
- User has 7 days to accept invitation and set password
You can resend invitation emails from the User Management page if users don't receive them initially.
Role Permissions Comparison
| Permission | Admin | Analyst | Responder | Viewer |
|---|---|---|---|---|
| View Dashboard & Events | ✅ | ✅ | ✅ | ✅ |
| Investigate Events | ✅ | ✅ | Limited | ❌ |
| Execute Response Actions | ✅ | ✅ | ✅ | ❌ |
| Manage Alerts & Rules | ✅ | ✅ | ❌ | ❌ |
| Generate Reports | ✅ | ✅ | ✅ | ✅ |
| Manage Configuration | ✅ | ❌ | ❌ | ❌ |
| Add/Remove Users | ✅ | ❌ | ❌ | ❌ |
| Manage Billing | ✅ | ❌ | ❌ | ❌ |
Managing Existing Users
- ✏️ Edit User
- 🔑 Reset Password
- 📊 View Activity
- 🚫 Disable/Remove
Edit User Details
Update user information, change roles, or modify team assignments from the User Management page.
Steps:
- Navigate to Settings → User Management
- Click on any user to view details
- Make changes as needed
- Click Save
Reset Password
Users can reset their own passwords via the login page. Admins can trigger password reset emails from the User Management page if needed.
Admin Reset:
- Go to Settings → User Management
- Select the user
- Click "Reset Password"
- User receives email with reset link
View User Activity
Track user actions including logins, event investigations, and action executions.
Access: Settings → User Activity
Logged activities include:
- Login attempts (successful and failed)
- Security event investigations
- Response action executions
- Configuration changes
Disable/Remove Users
| Action | Use Case |
|---|---|
| Disable | Temporarily prevent access without deleting |
| Remove | Permanently remove when employee leaves |
All user actions remain in audit logs even after removal for compliance purposes.
Best Practices
- 🔒 Security
- ⚙️ Management
Security Best Practices
| Practice | Description |
|---|---|
| Least Privilege | Assign minimum role required for job function |
| Enable MFA | Require multi-factor authentication for all users |
| Prompt Offboarding | Disable accounts immediately when employees leave |
Management Best Practices
| Practice | Description |
|---|---|
| Quarterly Reviews | Audit user accounts to ensure appropriate permissions |
| Monitor Activity | Review user activity logs for unusual behavior |
| Document Decisions | Record role assignment rationale for compliance |
📝 User Onboarding Checklist
- Create user account with appropriate role
- Send invitation email
- User accepts invitation and sets password
- User sets up MFA
- Assign to appropriate team
- Provide orientation on platform usage
- Document role assignment rationale
What's Next?
| Guide | Description |
|---|---|
| Roles & Permissions | Detailed permission settings for each role |
| Multi-Factor Auth | Set up MFA to enhance account security |
| User Activity Logs | Monitor and audit user actions |
Need More User Licenses?
Running out of user seats? Upgrade your subscription to add more team members.