Add-on roles and permissions

With add-on roles, you can easily grant variable levels of access to particular New Relic products or features for all users in your account. Role-based access controls (RBAC) allow you to tailor your account permissions to suit the needs of Users and Restricted Users within your account. For example, you could make a software engineer in your company a User in most products, but grant them Admin-level access to APM.

There are two types of add-on roles:

  • Add-on Manager roles are available out-of-the box, and grant permissions on a per-product basis. Giving a User or Restricted User managed add-on access to a product grants them the equivalent of Admin capabilities within the product.
  • Custom add-on roles can grant feature-specific permissions across different New Relic products. For example, a group of Users could have the ability to acknowledge incidents and close violations in New Relic Alerts, but not have the ability to modify your existing alert preferences.

Individuals on a master account which has sub-accounts automatically have the same level of access for all sub-accounts.

To view the list of individuals assigned to your account and their current roles: Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles.

Assign a managed role

Owner and Admins

Managed add-on roles are available by default for each New Relic product. Adding a managed role for a user grants them Admin-level permissions for the assigned product. They cannot be edited or deleted. To assign a managed add-on role for a User or Restricted User in your account:

  1. Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles.
  2. Select their name from the list of users associated with your account.
  3. Under Add-on roles, select the type of manager role for the user. Use the Capabilities Preview chart to understand which capabilities are being added. Features in the Capabilities Preview are not limited by your subscription level, and some features displayed may be unavailable.

You can also add, update, or delete users in bulk via CSV file.

Create a custom role

To create a custom add-on role for your account:

  1. Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles > Roles.
  2. Select plus-circle New custom add-on role.
  3. Select the capabilities necessary for the new custom role, then Create role.

Assign a custom role

Owners and Admins

You must create a custom role before assigning it to a user. To assign a custom add-on role for a User or Restricted User in your account:

  1. Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles > Users.
  2. Select their name from the list of users associated with your account.
  3. Under Add-on roles, select a custom role for the user.
  4. Click Update user.

Edit or delete a custom role

Owners and Admins

New Relic default roles are not editable or deletable, but you can edit custom roles that have been created for your account. To edit or delete a custom add-on role:

  1. Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles > Roles.
  2. From the Add-on roles list, select the custom role.
    • To edit: Click the pencil Edit role. Update the custom capabilities tied to the role, and then click Update role
    • To delete: Click trash-o Delete role

For more help

Recommendations for learning more: