Learn Harness' Key Concepts

Quickstarts

Supported Platforms and Technologies

Harness Products and Editions

How to Use Harness Docs

Harness FirstGen vs Harness NextGen

Harness Self-Managed Enterprise Edition Overview

CI Pipeline Quickstart

Build and Push an Artifact

Build and Push to GCR

Upload Artifacts to JFrog

Modify and Override Build Settings Before a Build

Define a Kubernetes Cluster Build Infrastructure

Configure a Kubernetes Build Farm to use Self-Signed Certificates

Define an AWS VM Build Infrastructure

Create and Configure a Codebase

Run a Drone Plugin in CI

Run a GitHub Action in CI

Share CI Data Across Steps and Stages

Save and Restore Cache from S3

Save and Restore Cache from GCS

Run a Script in a CI Stage

Run Docker-in-Docker in a CI Stage

Clone and Process Multiple Codebases in the Same Pipeline

View Tests

Set up Test Intelligence

CI Build Stage Settings

Configure Service Dependency Step Settings

CI Run Step Settings

Plugin Step Settings

Build and Push to GCR Step Settings

Build and Push an Image to Docker Registry Step Settings

Build and Push to ECR Step Settings

Upload Artifacts to S3 Step Settings

Upload Artifacts to GCS Step Settings

Upload Artifacts to JFrog Artifactory Step Settings

Save Cache to GCS Step Settings

Save Cache to S3 Step Settings

Restore Cache from GCS Settings

Restore Cache from S3 Step Settings

Harness CI Images List

CI Build Image Updates

Built-in CI Codebase Variables Reference

CI Cluster Requirements

Run Tests Step Settings

CI Pipeline Basics

Harness CI Concepts

Drone and Harness

Test Intelligence

Optimizing CI Build Times

Troubleshooting Continuous Integration (CI)

Kubernetes CD Quickstart

Helm Chart CD Quickstart

Kustomize Quickstart

Azure ACR to AKS CD Quickstart

Native Helm Quickstart

Harness Argo CD GitOps Quickstart

Harness CD Community Edition Quickstart

CD Pipeline Basics

Kubernetes Services

Kubernetes Infrastructure

Provision Target Deployment Infra Dynamically with Terraform

Create a Kubernetes Rolling Deployment

Create a Kubernetes Canary Deployment

Create a Kubernetes Blue Green Deployment

Deploy Manifests Separately using Apply Step

Scale Kubernetes Pods

Delete Kubernetes Resources

Run Kubernetes Jobs

Verify Deployments with the Verify Step

Verify Deployments with AppDynamics

Verify Deployment with Prometheus

Verify Deployments with Dynatrace

Verify Deployments with Splunk

Verify Deployments with Custom Health Source

Verify Deployments with Google Cloud Operations

Verify Deployments with New Relic

Verify Deployments with Datadog

Add Kubernetes Manifests

Add Container Images as Artifacts for Kubernetes Deployments

Add and Override Values YAML Files

Pull an Image from a Private Registry for Kubernetes

Ignore a Manifest File During Deployment

Add a Kubernetes Sidecar Container

Deployment Concepts and Strategies

Kubernetes Deployments Overview

Harness CD Community Edition Overview

Terraform Provisioning with Harness

Deploy Helm Charts

Use Kustomize for Kubernetes Deployments

Terraform How-tos

Plan Terraform Provisioning with the Terraform Plan Step

Provision with the Terraform Apply Step

Remove Provisioned Infra with the Terraform Destroy Step

Rollback Provisioned Infra with the Terraform Rollback Step

Using Manual Harness Approval Steps in CD Stages

Create Jira Issues in CD Stages

Update Jira Issues in CD Stages

Create Service Now Tickets in CD Stages

Update Service Now Tickets in CD Stages

Propagate and Override CD Services

Using Shell Scripts in CD Stages

Using HTTP Requests in CD Pipelines

Add a Pipeline Notification Strategy

Synchronize Deployments using Barriers

Monitor Deployments and Services in CD Dashboards

View Deployments Dashboard (Current Generation)

View Services Dashboard (Current Generation)

Example Kubernetes Manifests using Go Templating

Kubernetes Releases and Versioning

Kubernetes Rollout Step

Canary Deployment Step

Canary Delete Step

What Can I Deploy in Kubernetes?

Kubernetes Rollback

Kubernetes Annotations and Labels

Using OpenShift with Harness Kubernetes

Kubernetes Apply Step

JSON and XML Functors

HTTP Step Reference

Run Steps in a Step Group

Shell Script Step Reference

Getting Started with Feature Flags

Java Quickstart

Create a Feature Flag

Enable or Disable a Feature Flag

Edit and Delete a Feature Flag

Add Targets

Manage Target Groups

Manage Variations of the Feature Flag

Add Flag Prerequisites

Targeting Users with Flags

Add and Manage Access Control

View Activities of a Feature Flag

View Metrics

Manage Feature Flags using Git Experience

Build a Feature Flag Pipeline

Relay Proxy

Deploy Relay Proxy

Harness Policy Engine Overview for Feature Flags

Use Harness Policy Engine for Feature Flags

JavaScript SDK Reference

iOS SDK Reference

Android SDK Reference

Flutter SDK Reference

React Native SDK Reference

Xamarin SDK Reference

Java SDK Reference

Go SDK Reference

Node.js SDK Reference

.NET SDK Reference

Python SDK Reference

Ruby SDK Reference

Communication Strategy Between SDKs and Harness Feature Flags

GDPR Compliance

Feature Flags Overview

Client-Side and Server-Side SDKs

SDK Version Policy

Anonymous Users and Monthly Active Users Count

Set Up Cloud Cost Management for Kubernetes

Set Up Cloud Cost Management for AWS

Set Up Cloud Cost Management for GCP

Set Up Cloud Cost Management for Azure

Create an AWS Connector for AutoStopping Rules

Create an Azure Connector for AutoStopping Rules

Create a GCP Connector for AutoStopping Rules

Create a Kubernetes Connector for AutoStopping Rules

Review AutoStopping Rules Requiremnets

Create AutoStopping Rules for AWS

Create AutoStopping Rules for Amazon ECS

Create AutoStopping Rules for RDS

Create AutoStopping Rules for Azure

Create AutoStopping Rules for GCP

Create AutoStopping Rules for a Kubernetes Cluster

Create AutoStopping Rules with Terraform

Use AutoStopping Rules Dashboard

Create an Application Load Balancer for AWS

Create an Application Gateway for Azure

Create a Custom Load Balancer for GCP

Configure ECG for AutoStopping Rules

Create Cost Perspectives

Share Your Cost Perspective Report

Create a Budget for Your Perspective

Analyze Cost for AWS Using Perspectives

Analyze Cost for Azure Using Perspectives

Analyze Cost for GCP Using Perspectives

Analyze Cost for Kubernetes Using Perspectives

Perform Root Cost Analysis

Optimize Kubernetes Costs with Workload Recommendations

Optimize Kubernetes Costs with Node Pool Recommendations

Create a Budget

Detect Cloud Cost Anomalies with CCM

View AWS Cost Dashboard

View AWS Reservation Efficiency Dashboard

View Azure Cost Dashboard

View Cluster Cost Dashboard

View GCP Cost Dashboard

View Multi-cloud Cost Overview Dashboard

View AWS Resource Breakdown Dashboard

Orphaned EBS Volumes and Snapshots Dashboard

View AWS EC2 Instance Metrics Dashboard

View AWS EC2 Inventory Cost Dashboard

Use Multiple Tags in AWS Dashboards

Manage Access Control for CCM Dashboards

Cloud Cost Management Overview

AutoStopping Rules Overview

Key Cloud Cost Concepts

Datadog Integration with Cloud Cost Management

SLO Management Quickstart

Change Impact Analysis Quickstart

SLO-Driven Governance

Install an Error Tracking Agent

Error Tracking in SRM

Service Reliability Management Basics

Security Testing Orchestration Quickstart (Public Preview)

Security Step Settings Reference

Security Testing Orchestration Basics (Public Preview)

Harness Chaos Engineering Quickstart (Public Preview)

Harness Chaos Engineering Basics (Public Preview)

Harness YAML Quickstart

Harness Git Experience Quickstart

Harness Policy Engine Quickstart

Get Started with RBAC

Add and Manage Users

Add and Manage User Groups

Add and Manage Service Accounts

Add and Manage API Keys

Add and Manage Resource Groups

Add and Manage Roles

Create Organizations and Projects

Install a Kubernetes Delegate

Install a Docker Delegate

Select Delegates with Tags

Run Scripts on Delegates

Configure Delegate Proxy Settings

Automate Delegate Installation

Truststore Override for Delegates

Delegate Registration and Verification

Non-Root Delegate Installation

Create a Custom Delegate that Includes Custom Tools

Secure Delegates with Tokens

Add a Kubernetes Cluster Connector

Add an AWS Connector

Add a Microsoft Azure Cloud Connector

Add a Google Cloud Platform (GCP) Connector

Add a GitHub Connector

Connect to a Cloud Provider

Connect to an Artifact Repo

Connect to Harness Container Image Registry Using Docker Connector

Connect to a Git Repo

Connect to Jira

Connect to ServiceNow

Connect to Monitoring and Logging Systems

Connect to IBM Cloud Container Registry

Use a GitHub App in a GitHub Connector

Create a Connector using YAML

Add a Secret Manager

Add a HashiCorp Vault Secret Manager

Add an Azure Key Vault Secret Manager

Add an AWS Secrets Manager

Add an AWS KMS Secret Manager

Add Google KMS as a Harness Secret Manager

Add and Reference Text Secrets

Add and Reference File Secrets

Add SSH Keys

Disable Built-In Secret Manager

Two-Factor Authentication

Single Sign-On (SSO) with SAML

Single Sign-On (SSO) with OAuth

Provision Users with Okta (SCIM)

Provision Users and Groups with OneLogin (SCIM)

Provision Users and Groups using Azure AD (SCIM)

Add a Stage

Define a Failure Strategy on Stages and Steps

Run Pipelines using Input Sets and Overlays

Run Specific Stages in Pipeline

Searching the Console View

Retry Pipeline Deployments

Adding Jira Approval Stages and Steps

Using Manual Harness Approval Stages

Adding ServiceNow Approval Stages and Steps

Schedule Pipelines using Triggers

Trigger Pipelines on New Helm Chart

Trigger Pipelines on a New Artifact

Trigger Pipelines using Git Events

Trigger Pipelines using Git Event Payload Conditions

Templates Overview

Create a Step Template

Create an HTTP Step Template

Create a Stage Template

Create a Pipeline Template

Use a Template

Git Experience How-tos

Add Source Code Managers

Configure Git Sync in Harness

Manage Pipelines in Git Repos

Manage Project Resources in Git Repos

Manage Input Sets and Overlays in Git Repos

Add Folders to Existing Git Experience Repos

Diagnose and Fix Git Sync Errors

Create Dashboards

Schedule and Share Dashboards

Create Visualizations and Graphs

Download Dashboard Data

Use Dashboard Actions

Create Conditional Alerts

Add Custom Fields

Extracting Characters from Harness Variable Expressions

Add Account, Org, and Project-level Variables

View Audit Trail

Add SMTP Configuration

Send Notifications Using Slack

Send Notifications to Microsoft Teams

Use Harness Open Policy Agent For Connectors

Add a Policy Engine Step to a Pipeline

Harness Entity Reference

Entity Identifier Reference

Entity Retention Policy

Entity Deletion Reference

Entity Name and Id Rules

Data Retention

Tags Reference

Delegate Requirements and Limitations

Permissions and Ports for Harness Connections

Common Delegate Initialization Scripts

Whitelist Harness Domains and IPs

Step and Stage Failure Strategy References

Stage and Step Conditional Execution Settings

Triggers Reference

YAML Reference: Pipelines

Built-in Harness Variables Reference

GitLab Connector Settings Reference

Bitbucket Connector Settings Reference

AWS CodeCommit Connector Settings Reference

Git Connector Settings Reference

GitHub Connector Settings Reference

AWS Connector Settings Reference

Kubernetes Cluster Connector Settings Reference

Google Cloud Platform (GCP) Connector Settings Reference

HTTP Helm Repo Connector Settings Reference

Artifactory Connector Settings Reference

Nexus Connector Settings Reference

Docker Connector Settings Reference

Jira Connector Settings Reference

API Permissions Reference

Permissions Reference

Source Code Manager Settings

Harness Role-Based Access Control Overview

Authentication Overview

Organizations and Projects Overview

Delegates Overview

Delegate Installation Overview

Harness Secrets Management Overview

Harness Git Experience Overview

Fixed Values, Runtime Inputs, and Expressions

Harness Policy Engine Overview

Input Sets and Overlays

Pipeline Resource Constraints

Harness API Quickstart

Use the Harness REST API

Self-Managed Enterprise Edition - Kubernetes Cluster: Infrastructure Requirements

Self-Managed Enterprise Edition - Kubernetes Cluster: Setup Guide

Self-Managed Enterprise Edition Support Policy for Kubernetes

Self-Managed Enterprise Edition - Kubernetes Cluster: Add Ingress Controller Service Annotations

Self-Managed Enterprise Edition - Virtual Machine: Infrastructure Requirements

Self-Managed Enterprise Edition - Virtual Machine: Setup Guide

Self-Managed Enterprise Edition - Virtual Machine: Backup and Recovery

Monitor Harness Self-Managed Enterprise Edition

Troubleshooting Harness

Harness Security FAQs

Cloud Cost Management (CCM) FAQs

Continuous Delivery (CD) FAQs

Harness Delegate FAQs

Feature Flags (FF) FAQs

Continuous Integration (CI) FAQs

Harness Self-Managed Enterprise Edition Release Notes

Harness SaaS Release Notes

Harness Self-Managed Enterprise Edition Release Notes 2021

Harness SaaS Release Notes 2021

Harness Delegate Docker Image Change Log

All Categories > Feature Flags > FF How-tos > Access Control > Add and Manage Access Control

Add and Manage Access Control

Updated 3 months ago by Archana Singh

Before You Begin
Review Feature Flags Roles and Permissions
Step: Manage Feature Flag Access Control
Access Control Examples in Feature Flags
- Example 1: Read-only Role in all the Environments

Harness provides Role-Based Access Control (RBAC) that enables you to control user and group access to Harness Resources according to their Role assignment.

This topic describes how to add and manage access control for Feature Flags.

Before You Begin

Review Feature Flags Roles and Permissions

The following pre-defined default Role is available for Feature Flags:

Feature Flag Manage Role: Can create new feature flags and also edit and view existing feature flags

Default Roles

Scope

Permissions

Feature Flag Manage Role

Project/Environment

Feature flag create
Feature flag view
Feature flag edit
Target group view
Target group edit
Environment SDK Key view

If you have permissions at the Project level, you can edit flags within that project or its environments.
If you have permissions for the specific environment, then the Role is limited within the environment only.

Step: Manage Feature Flag Access Control

In Feature Flags, in Project Setup, click Access Control.

Click Users and then New User to add a new user. See Add and Manage Users.
Click User Groups and then New User Group to add a new user group. See Add and Manage User Groups.
Click Resource Groups and then New Resource Group to add a new resource group. See Add and Manage Resource Groups.
Click Roles and then New Role to add a new role. See Add and Manage Roles.

Access Control Examples in Feature Flags

The following are some of the example scenarios where-in you can use RBAC to manage access for your users:

Example 1: Read-only Role in all the Environments

Users with a read-only role for all the Environments can view all the flags in the environment, but cannot create or edit any flag.

Example 2: Edit Role in a Specific Environment

Users with Feature Flag Manage

Example 3: Manager Role that can edit flags in all envs, but not create flags

Add and Manage Access Control

Before You Begin

Review Feature Flags Roles and Permissions

Step: Manage Feature Flag Access Control

Access Control Examples in Feature Flags

Example 1: Read-only Role in all the Environments

Please Provide Feedback

People also searched for Manage Access Control for CCM Dashboards Harness Role-Based Access Control Overview Manage Variations of the Feature Flag

Feedback

People also searched for

Manage Access Control for CCM Dashboards

Harness Role-Based Access Control Overview

Manage Variations of the Feature Flag