Cluster Management Permissions

Cluster management permissions and authorization roles control access across an entire system, organized into four key permission categories: general system permissions, subdomain management, cluster administration, and organization management. Each category details specific user capabilities ranging from feature flag controls and system-wide configurations to organization-level management and health monitoring, with clear descriptions and corresponding API names for implementation.

Cluster management permissions control access and use across the entire cluster, including the ability to manage and assign organization level permissions.

Table: Other Permissions

Users	Description	Shorthand/API Name
`Change feature flags`	Change the feature flags that enable functionality for the whole cluster or for a specific organization	`ChangeFeatureFlags`
`Change system permissions`	Change system permissions	`ChangeSystemPermissions`
`Change username`	Change the user name for an existing user	`ChangeUsername`
`Delete Falcon LogScale owned repository`	Delete a system LogScale repository	`DeleteHumioOwnedRepositoryOrView`
`Ingest across all repositories within cluster`	Allow data to be ingested across all repositories	`IngestAcrossAllReposWithinCluster`
`Manage organization links`	Manage parent child relationships between organizations	`ManageOrganizationLinks`

Table: Subdomains Permissions

Users	Description	Shorthand/API Name
`Change subdomains`	Change subdomain configurations	`ChangeSubdomains`
`List subdomains`	List available subdomains	`ListSubdomains`

Table: Cluster management Permissions

Users	Description	Shorthand/API Name
`Change bucket storage`	Change bucket storage configuration	`ChangeBucketStorage`
`Manage cluster`	Manage cluster parameters and operations. This permission also grants access to a lot of the Organization level permissions.	`ManageCluster`
`Patch global`	Allow modifying the global snapshot information ^[a]	`PatchGlobal`
`Read cluster health check`	Read the information generated by the cluster health check	`ReadClusterHealthCheck`
^[a] This permission should not be used without referring to LogScale support

Table: Organization management Permission

Users	Description	Shorthand/API Name
`Delete organizations`	Delete organizations from the cluster	`DeleteOrganizations`
`Import organization`	Import organization to the cluster	`ImportOrganization`
`Manage customer organizations`	Manage customer organizations	`ManageOrganizations`

Self-Hosted Overview

Instance Administration

Organization Essentials

Configuring Security

Authentication & Identity Providers

Users & permissions

Cluster Management

Health Checks

Ingesting Data

Configuration Settings

Configuration Variables

LogScale URLs & Endpoints

Limits & Standards

Deployment Overview

Planning Your Deployment

Provisioning

Installing Using Containers

Installing On Bare Metal or Cloud Instance

Reference Architectures

LogScale Kubernetes Reference Architecture

Installing Load Balancers

Deploying Auxiliary Services

Humio Operator

Data Analysis Overview

LogScale User Interface

Repositories & Views

Parsing Data

Searching Data

Writing Queries

Query Language Syntax

Query Joins and Lookups

Query Functions

Dashboards & Widgets

Automation

Template Language

Keyboard Shortcuts

Cluster Management Permissions

Not Available

Enter search term