Add-on roles and permissions

With add-on roles, you can easily grant variable levels of access to particular New Relic products or features for all users in your account. Role-based access controls (RBAC) allow you to tailor your account permissions to suit the needs of Users and Restricted Users within your account. For example, you could make a software engineer in your company a User in most products, but assign Admin-level access to APM.

New Relic's role-based structure allows you have direct control over who can access or change your account settings. Like any other New Relic product or service, the account management tools are designed to protect you and your customers' data privacy. For more information about New Relic's security measures, see our security and privacy documentation, or visit the New Relic security website.

Manager and custom roles

There are two types of add-on roles:

  • Add-on Manager roles are available to grant permissions on a per-product basis. Giving a User or Restricted User managed add-on access to a product grants them the equivalent of Admin capabilities within the product.
  • Custom add-on roles can grant feature-specific permissions across different New Relic products. For example, a group of Users could have the ability to acknowledge incidents and close violations in New Relic Alerts, but not have the ability to modify your existing alert preferences.

Individuals on a master account which has sub-accounts automatically have the same level of access for all sub-accounts.

To view the list of individuals assigned to your account and their current roles: Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles.

Assign a managed role

Owner and Admins

Managed add-on roles are available by default for each New Relic product. Adding a managed role for a user grants them Admin-level permissions for the assigned product. They cannot be edited or deleted. To assign a managed add-on role for a User or Restricted User in your account:

  1. Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles.
  2. From the list of users associated with your account, select their name.
  3. Under Add-on roles, select the type of manager role for the user.
  4. To understand which capabilities may be added, use the Capabilities preview chart.

Features in the Capabilities preview chart may not exactly match what features are available for your subscription level.

You can also add, update, or delete users in bulk by using a CSV file.

Create a custom role

To create a custom add-on role for your account:

  1. Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles > Roles.
  2. Select plus-circle New custom add-on role.
  3. Select the capabilities necessary for the new custom role, then Create role.

Assign a custom role

Owners and Admins

You must create a custom role before assigning it to a user. To assign a custom add-on role for a User or Restricted User in your account:

  1. Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles > Users.
  2. From the list of users associated with your account, select their name ].
  3. Under Add-on roles, select a custom role for the user.
  4. Click Update user.

Edit or delete a custom role

Owners and Admins

You cannot edit or delete New Relic's default roles. However, you can edit or delete custom add-on roles for your account:

  1. Go to rpm.newrelic.com > (account dropdown) > Account settings > Users and roles > Roles.
  2. From the Add-on roles list, select the custom add-on role, then select pencil Edit role or trash-o Delete role as appropriate.

For more help

Recommendations for learning more: