> For the complete documentation index, see [llms.txt](https://docs.vngcloud.vn/vng-cloud-document/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.vngcloud.vn/vng-cloud-document/ai-stack/agent-base/team-permissions/roles-and-permissions.md). # Roles & Permissions > Read-only permission matrix — helps Root and Admin understand what each role can do before assigning it to a member. *** ## Open the Roles & Permissions Tab Go to [Team & Permissions](https://aiplatform.console.vngcloud.vn/team-permissions) → **Roles & Permissions** tab ![Roles & Permissions](/files/TH3tVzSDFJoRppyPz1ga) *** ## Role Descriptions | Role | Key Capabilities | | ---------- | -------------------------------------------------------------------------------------------- | | **Root** | Billing & Quota management · Model Access configuration · Full control over members & agents | | **Admin** | Invite/Remove members · CRUD all agents · Manage API Keys & SAs · View Usage dashboard | | **Member** | Create new agents · Edit own agents · Run any agent · View logs & traces | | **Viewer** | View agent list · View logs & traces · View conversation history · View tool list | *** ## Permission Matrix > ✅ Full access · 🔸 Own only (own resources) · ✕ No access | Permission Group | Permission | Root | Admin | Member | Viewer | | -------------------------- | -------------------------------------------- | :--: | :---: | :----: | :----: | | **Member / SA Management** | View | ✅ | ✅ | ✅ | ✅ | | | Manage (invite, remove, edit) | ✅ | ✅ | 🔸 | 🔸 | | **Container Registry** | View | ✅ | ✅ | ✅ | ✅ | | | Delete images, artifacts & reset credentials | ✅ | ✅ | ✕ | ✕ | | **Agent — CRUD** | View | ✅ | ✅ | ✅ | ✅ | | | Create & edit agents, memory, access control | ✅ | ✅ | ✅ | ✕ | | | Delete agents, memory, access control | ✅ | ✅ | ✕ | ✕ | | **Tools & Integrations** | View | ✅ | ✅ | ✅ | ✅ | | | Create, edit, delete | ✅ | ✅ | ✕ | ✕ | | **API Keys** | Create API key | ✅ | ✅ | ✅ | ✕ | | | View & delete API key | ✅ | ✅ | ✕ | ✕ | | **Usage & Budget** | View usage & cost | ✅ | ✅ | ✅ | ✅ | | | View & edit budget | ✅ | ✕ | ✕ | ✕ | | **Rate Limit & Model** | View | ✅ | ✅ | ✅ | ✅ | | | Create & edit | ✅ | ✅ | ✕ | ✕ | **🔸 Own only explained:** * **Member / SA Management — Manage**: Member and Viewer can only change their own password *Admin can only assign roles within Workspace scope.* *** ## Next Steps | I want to... | Go to | | -------------------------------- | -------------------------------------------------------------------------------------------------------------- | | Assign or change a member's role | [Manage Members](/vng-cloud-document/ai-stack/agent-base/team-permissions/manage-members.md) | | View Service Accounts for agents | [Manage Service Accounts](/vng-cloud-document/ai-stack/agent-base/team-permissions/manage-service-accounts.md) | --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.vngcloud.vn/vng-cloud-document/ai-stack/agent-base/team-permissions/roles-and-permissions.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.