Menu
This is documentation for the next version of Grafana. For the latest stable release, go to the latest version.
Grafana open source documentation
Administration
Roles and permissions
Role-based access control (RBAC)
Configure RBAC
Administration
Roles and permissions
Role-based access control (RBAC)
Configure RBACGrafana Cloud
Enterprise
Configure RBAC in Grafana
Note: Available in Grafana Enterprise and Grafana Cloud.
The table below describes all RBAC configuration options. Like any other Grafana configuration, you can apply these options as environment variables.
| Setting | Required | Description | Default |
|---|---|---|---|
permission_cache | No | Enable to use in memory cache for loading and evaluating users’ permissions. | true |
permission_validation_enabled | No | Grafana enforces validation for permissions when a user creates or updates a role. The system checks the internal list of scopes and actions for each permission to determine they are valid. By default, if a scope or action is not recognized, Grafana logs a warning message. When set to true, Grafana returns an error. | false |
reset_basic_roles | No | Reset Grafana’s basic roles’ (Viewer, Editor, Admin, Grafana Admin) permissions to their default. Warning, if this configuration option is left to true this will be done on every reboot. | true |
Example RBAC configuration
[rbac]
permission_cache = trueWas this page helpful?
Related resources from Grafana Labs
Getting started with the Grafana LGTM Stack
In this webinar, we’ll demo how to get started using the LGTM Stack: Loki for logs, Grafana for visualization, Tempo for traces, and Mimir for metrics.
Getting started with Grafana dashboard design (EMEA Timezone)
In this webinar, you'll learn how to design stylish and easily accessible Grafana dashboards that tell a story.
Unify your data with Grafana plugins: Datadog, Splunk, MongoDB, and more
In this webinar, learn how to leverage Grafana's plugin ecosystem for access to 80+ data sources, including plugins for Datadog, Splunk, MongoDB, and more.