Learn about Wavefront permissions.

Permissions allow administrators to control access to Wavefront feature sets. Administrators can manage permissions for groups or for users.

The following list gives an overview of permissions. To learn more, click the link.

  • Accounts

    Users with Accounts permission can manage user and service accounts. They can create groups and add accounts to groups, create roles and assign permissions to those roles, and assign roles to groups.

  • Alerts

    Users with Alerts permission can create, edit, and delete alerts as well as maintenance windows, manage alert tags and view alert history, and create, edit, and delete alert targets.

  • Applications

    Users with Applications permission, can update the threshold (T) of the Application Performance Index (Apdex) score and create sampling policies.

  • Batch Query Priority

    When an account with Batch Query Priority permission runs queries, Wavefront treats every query executed by that account as if it was wrapped in the bestEffort() function.

  • Chart Embedding

    Users with Chart Embedding permission can generate HTML snippets of Wavefront charts and embed a corresponding interactive chart outside of Wavefront. Embedded chart URLs are associated with a specific user account. If a user embeds a chart and later that user’s Wavefront account is removed, the embedded chart no longer works.

  • Dashboards

    Users with Dashboards permission can create, manage, and delete all dashboards and charts and manage dashboard tags.

  • Derived Metrics

    Users with Derived Metrics permission can create and manage registered queries. Derived metrics support reingesting a query.

  • Direct Data Ingestion

    An account with Direct Data Ingestion permission can directly ingest metrics using the Wavefront API or one of the Wavefront SDKs, bypassing the proxy. Grant Direct Data Ingestion permission only to users who have a deep understanding of APIs and the Wavefront ingestion path.

  • Events

    Users with Events permission can create, manage, and close user events and manage event tags.

  • External Links

    Users with External Links permission can create, update, and delete external links.

  • Integrations

    Users with Integrations permission can install and uninstall integration dashboards, alerts, etc.

  • Metrics

    Service accounts must have this permission to run queries. Only accounts with Metrics permission can manually hide and unhide metrics and metric prefixes. Only accounts with Metrics permission can create and modify Metrics Security Policy Rules.

  • Proxies

    Users with Proxies permission can view, create, and manage proxies and set up external integrations with AWS and other cloud services.

  • SAML IdP Admin

    Users with this permission can set up and configure SAML SSO.

  • Source Tags

    Users with Source Tags permission can manage sources and source tags. If you don’t have Source Tags permission, source tags will be rejected with a 403 error.