grafana/docs/sources/permissions/overview.md

+++
title = "Overview"
description = "Overview for permissions"
keywords = ["grafana", "configuration", "documentation", "admin", "users", "datasources", "permissions"]
type = "docs"
aliases = ["/reference/admin", "/administration/permissions/"]
[menu.docs]
name = "Overview"
identifier = "overview-permissions"
parent = "permissions"
weight = 1
+++

# Permissions Overview

Grafana users have permissions that are determined by their:

- **Organization Role** (Admin, Editor, Viewer)
- Via **Team** memberships where the **Team** has been assigned specific permissions.
- Via permissions assigned directly to user (on folders, dashboards, datasources)
- The Grafana Admin (i.e. Super Admin) user flag.

## Grafana Admin

This admin flag makes a user a `Super Admin`. This means they can access the `Server Admin` views where all users and organizations can be administrated.

## Organization Roles

Users can be belong to one or more organizations. A user's organization membership is tied to a role that defines what the user is allowed to do
in that organization. Learn more about [Organization Roles]({{< relref "permissions/organization_roles.md" >}}).


## Dashboard & Folder Permissions

Dashboard and folder permissions allows you to remove the default role based permissions for Editors and Viewers and assign permissions to specific **Users** and **Teams**. Learn more about [Dashboard & Folder Permissions]({{< relref "permissions/dashboard_folder_permissions.md" >}}).

## Datasource Permissions

Per default, a datasource in an organization can be queried by any user in that organization. For example a user with `Viewer` role can still
issue any possible query to a data source, not just those queries that exist on dashboards he/she has access to.

Datasource permissions allows you to change the default permissions for datasources and restrict query permissions to specific **Users** and **Teams**. Read more about [Datasource Permissions]({{< relref "permissions/datasource_permissions.md" >}}).
restructure administration/permissions page into a section with sub pages 2018-10-30 12:43:54 -05:00			`+++`
			`title = "Overview"`
			`description = "Overview for permissions"`
			`keywords = ["grafana", "configuration", "documentation", "admin", "users", "datasources", "permissions"]`
			`type = "docs"`
			`aliases = ["/reference/admin", "/administration/permissions/"]`
			`[menu.docs]`
			`name = "Overview"`
			`identifier = "overview-permissions"`
			`parent = "permissions"`
			`weight = 1`
			`+++`

			`# Permissions Overview`

			`Grafana users have permissions that are determined by their:`

			`- Organization Role (Admin, Editor, Viewer)`
			`- Via Team memberships where the Team has been assigned specific permissions.`
			`- Via permissions assigned directly to user (on folders, dashboards, datasources)`
			`- The Grafana Admin (i.e. Super Admin) user flag.`

			`## Grafana Admin`

			This admin flag makes a user a `Super Admin`. This means they can access the `Server Admin` views where all users and organizations can be administrated.

			`## Organization Roles`

			`Users can be belong to one or more organizations. A user's organization membership is tied to a role that defines what the user is allowed to do`
			`in that organization. Learn more about [Organization Roles]({{< relref "permissions/organization_roles.md" >}}).`


			`## Dashboard & Folder Permissions`

			`Dashboard and folder permissions allows you to remove the default role based permissions for Editors and Viewers and assign permissions to specific Users and Teams. Learn more about [Dashboard & Folder Permissions]({{< relref "permissions/dashboard_folder_permissions.md" >}}).`

			`## Datasource Permissions`

			Per default, a datasource in an organization can be queried by any user in that organization. For example a user with `Viewer` role can still
			`issue any possible query to a data source, not just those queries that exist on dashboards he/she has access to.`

			`Datasource permissions allows you to change the default permissions for datasources and restrict query permissions to specific Users and Teams. Read more about [Datasource Permissions]({{< relref "permissions/datasource_permissions.md" >}}).`