---
title: "Frontend Observability role-based access control | Grafana Cloud documentation"
description: "Learn about RBAC roles supported in Frontend Observability"
---

# Frontend Observability role-based access control

Control access to Frontend Observability applications and features by assigning appropriate roles to team members based on their responsibilities and security requirements.

Frontend Observability supports role-based access control (RBAC). RBAC provides a standardized way of granting, changing, and revoking access when it comes to viewing and modifying Grafana resources, such as dashboards, reports, and administrative settings.

> Note
> 
> Frontend Observability RBAC only includes a set of basic roles and not fine-grained access. See which roles are defined below.

Refer to the [Grafana RBAC documentation](/docs/grafana/latest/administration/roles-and-permissions/access-control/) to learn more about RBAC in Grafana Cloud.

## Available Frontend Observability RBAC roles

If you grant a user any of the following roles, that user is also granted the `plugins.app:access` action with a scope of `plugins:id:grafana-kowalski-app`. This action grants the user the ability to access the plugin.

Expand table

| Role                          | Description                                                                  | Granted to           |
|-------------------------------|------------------------------------------------------------------------------|----------------------|
| Frontend Observability Admin  | Editor permissions and can delete applications                               | Grafana Admin, Admin |
| Frontend Observability Editor | Viewer permissions and can create/edit applications and application settings | Editor               |
| Frontend Observability Viewer | Permissions only to view applications and data                               | Viewer               |