Documentationbreadcrumb arrow Grafana Cloudbreadcrumb arrow Monitor applicationsbreadcrumb arrow Frontend Observabilitybreadcrumb arrow Settings and policiesbreadcrumb arrow Role-based access control (RBAC)
Grafana Cloud

Frontend Observability role-based access control

Control access to Frontend Observability applications and features by assigning appropriate roles to team members based on their responsibilities and security requirements.

Frontend Observability supports role-based access control (RBAC). RBAC provides a standardized way of granting, changing, and revoking access when it comes to viewing and modifying Grafana resources, such as dashboards, reports, and administrative settings.

Note

Frontend Observability RBAC only includes a set of basic roles and not fine-grained access. See which roles are defined below.

Refer to the Grafana RBAC documentation to learn more about RBAC in Grafana Cloud.

Available Frontend Observability RBAC roles

If you grant a user any of the following roles, that user is also granted the plugins.app:access action with a scope of plugins:id:grafana-kowalski-app. This action grants the user the ability to access the plugin.

RoleDescriptionGranted to
Frontend Observability AdminEditor permissions and can delete applicationsGrafana Admin, Admin
Frontend Observability EditorViewer permissions and can create/edit applications and application settingsEditor
Frontend Observability ViewerPermissions only to view applications and dataViewer

Note

Deleting custom tabs requires the Grafana Admin organization role. The Frontend Observability Admin plugin role does not grant this permission.