Skip to main content

Users & roles

GuardKite supports per-tenant user management. Each user has a role that controls what they can do.

Roles

Admin — full access to findings, AWS accounts, users, and billing. Can add, edit, and remove users; can promote a member to admin; cannot demote themselves out of the admin role.

Member — read-only access to findings-related data. Can view Findings, IAM Risk, Attack Paths, and Events; cannot add or remove users, manage AWS accounts, or change settings.

Managing users

Open Settings → Users in the sidebar.

Add a user

  1. Click Add.
  2. Enter the user's details, choose a role, and click Create.

The user receives an email invitation. They must click the invitation link to join your tenant — signing up at app.guardkite.com directly bypasses the invitation and creates a new, separate tenant under their own name.

Resend an invitation

If a user's invitation expired before they accepted it, click Resend Invitation to send a new one.

Change a role or remove a user

  • To change a role, click Edit, pick the new role, and click Update.
  • To remove a user, click Delete and confirm.