Roles and Permissions
Odin Scan organizations use role-based access control to manage what each team member can do. Every organization member is assigned exactly one role.
Roles
Owner
The Owner has full control over the organization, including billing, membership, and all scanning capabilities. The user who creates the organization (by purchasing the subscription) is automatically assigned this role.
There must always be at least one Owner in an organization.
Admin
Admins can manage team membership and perform all scanning and reporting operations. They cannot access billing settings or delete the organization.
Member
Members can run scans, view reports, and manage their own account settings. They cannot invite or remove other users.
Viewer
Viewers have read-only access to scan reports and the dashboard. They cannot initiate scans or modify any settings.
Permission Matrix
| Permission | Owner | Admin | Member | Viewer |
|---|---|---|---|---|
| Run scans | Yes | Yes | Yes | No |
| View reports and findings | Yes | Yes | Yes | Yes |
| Manage own account settings | Yes | Yes | Yes | Yes |
| Invite members | Yes | Yes | No | No |
| Remove members | Yes | Yes | No | No |
| Change member roles | Yes | Yes | No | No |
| Access organization settings | Yes | Yes | No | No |
| Manage billing and subscription | Yes | No | No | No |
| Delete organization | Yes | No | No | No |
| Transfer ownership | Yes | No | No | No |
Assigning Roles
When inviting a new member, the inviter selects the role for the invited user. The default role for new invitations is Member.
Changing Roles
Owners and Admins can change a member’s role at any time:
- Navigate to Settings > Organization > Members.
- Find the member in the list.
- Select a new role from the dropdown.
- The change takes effect immediately.
Note: Only Owners can promote a member to Owner or demote another Owner. An organization must always have at least one Owner.