# Role Based Access Control

With RBAC (role-based access control), you can control access rights to users based on their roles. These controls enable the **Owner** to control what members of a Sleuth organization can do and what portions of the control panel they can see and alter. For example, only the Owner or Administrator can access billing information or change the name of or delete a project.

These are the four different roles a Sleuth user can assume:

| Role              | Privileges                                                                                                                                         |
| ----------------- | -------------------------------------------------------------------------------------------------------------------------------------------------- |
| **Owner**         | The organization owner that cannot be removed. An organization will always have one, and only one, owner. \*\*This account cannot be deleted. \*\* |
| **Administrator** | Can do anything. Can do the same thing as an Owner. Multiple Administrators can be created, and Administrators can be removed.                     |
| **Developer**     | Can add integrations, deployments, but not add, remove, or manage any users.                                                                       |
| **Observer**      | Can only view deployment information. Observers cannot change anything.                                                                            |
| **Billing**       | Can manage an organizations billing and will receive invoice emails.\*\* You are not billed for Billing users.\*\*                                 |

Login to your Sleuth account (but only if you're an Owner or Administrator), then go to ***Organization Settings > Members***, then select the cog dropdown next to the user to change their role:

![](/files/-MSJiMi8b85-qHlggxmv)

You can invite new members and assigned roles by entering their e-mail address in the *Member* field, selecting a role, then pressing **Invite**. The invitation will be displayed in the member list. When they accept the invitation, their Gravatar, role, name, and email address will be displayed.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.sleuth.io/sleuth-dora/settings/access-control.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.