Team & Permissions

Overview
Tab
Description
Roles in AgentBase
Role
Summary
Invite Members
Getting Started
I want to...
Go to
Last updated
Team & Permissions helps Root and Admin control who can access AgentBase and with what level of access โ through pre-built roles wrapped by AgentBase, easy to assign without manual IAM policy configuration.
Access at: https://aiplatform.console.vngcloud.vn/team-permissions

Team & Permissions contains three tabs:
Members
View the org member list; invite new members by copying the IDP Login URL; assign/change roles via the โฎ icon
Roles & Permissions
Read-only permission matrix โ understand what each role can do before assigning
Service Accounts
View SAs auto-created when deploying agents; click a SA to go to IAM and manage credentials
AgentBase provides 4 pre-built roles wrapping IAM policies โ simply select the right role, no manual policy configuration needed:
Root
Org owner โ full access including billing and SA secrets. One per org.
Admin
Admin appointed by Root โ manage members, agents, and org config. No billing, quota, or model config permissions.
Member
Active contributor โ create and run own agents; view SAs for agents they created
Viewer
Read-only โ view agent config, logs, and conversation history. Cannot perform any side-effect actions.
New members log in to AgentBase through a configured Identity Provider (IDP) in IAM โ no separate account creation needed. To invite:
Go to the Members tab โ click Invite Member
Copy the Login URL for the appropriate IDP
Send the URL to the member โ they visit the link, authenticate via IDP, and are automatically added to the org
After the member logs in for the first time, Root assigns the appropriate role via the โฎ icon on the member's row.
View, invite, remove members and assign roles
Understand permissions for each role
View Service Accounts for agents
Last updated

