User types and privileges
There are different types of users in Birst with different privileges or permissions. This table summarizes some of these differences.
| User Type | Description | Privileges |
|---|---|---|
| Repository Administrator | For Cloud environments, the Repository Administrator is a member of the Birst Operations Team. For Appliance environments, the accountadmin@birst.com account has Repository Administrator privileges. |
Account used for internal debugging. Has access to the internal versions of the logs. Can export SQL queries from Query Admin. |
| Account Administrator |
Manages an account in a Birst environment. In the Cloud environment, customers have a designated Account Administrator in their own organization. For Appliance environments, it is the built-in user accountadmin@birst.com. |
Manages users and user access to particular functionality such as creating spaces, language settings, etc. Assigns products, release versions, processing versions, allowed IP addresses, password policies, authentication settings, etc. for the account. Can run account and space operations commands from the Command Window or web service. |
| Space Owner | The user who created the space. | Has access to all modules for the space, including Admin. Can upload and process data, create reports and dashboards, create groups and assign ACLs, etc. - essentially everything needed to run and manage a space. Has access to all things that would otherwise require group ACLs. Does not need to belong to a particular group for ACLs. Is exempt from security filters. Can create a usage tracking space to monitor a space that they own. Can run space operations commands from the Command Window or web service. |
| Space Administrator | A user who was granted administrator privileges by a Space Owner for a particular space. | Has access to the Admin module of the space. Has access to the Original Dashboards module. By default, do not have any ACLs granted for them in the space. Space Administrators need to belong to a group with ACLs assigned, including access to additional modules such as Dashboards. Is not exempt from security filters. Can run space operations commands from the Command Window or web service. |
| Business user, end-user | A consumer of Birst reports and dashboards on various devices. Generally performs read-only tasks, may also have limited permissions to explore reports. | By default has create space privileges. (This privilege can be denied by
the Account Administrator.) Has user privileges as specified by the Account Administrator. Has group ACL permissions as specified by the Space Owner or Administrator. |