Permissions

    What you can do in Grafana is defined by the permissions associated with your user account.

    There are three types of permissions:

    • Permissions granted as a Grafana Server Admin
    • Permissions granted to a specific folder or dashboard
    • Grafana Server Admin status.
    • Organization role (Admin, Editor, or Viewer).
    • Folder or dashboard permissions assigned to your team (Admin, Editor, or Viewer).
    • Folder or dashboard permissions assigned to your user account (Admin, Editor, or Viewer).
    • (Grafana Cloud) Grafana Cloud has additional roles. For more information, refer to .

    If you are running Grafana Enterprise, you can grant access by using fine-grained roles and permissions, refer to Fine-grained access Control for more information.

    Grafana server administrators have the Grafana Admin flag enabled on their account. They can access the Server Admin menu and perform the following tasks:

    • Manage users and permissions.
    • Create, edit, and delete organizations.
    • View server-wide settings that are set in the file.
    • View Grafana server stats, including total users and active sessions.

    Users can belong to one or more organizations. A user’s organization membership is tied to a role that defines what the user is allowed to do in that organization. For more information, refer to Organization roles.

    Dashboard and folder permissions allow you to remove the default role based permissions for Editors and Viewers and assign permissions to specific users and teams. Learn more about .

    Data source permissions allows you to change the default permissions for data sources and restrict query permissions to specific Users and Teams. For more information, refer to Data source permissions in .