# How do I manage Users and Roles?

Account admins can access the User Management features via the Tools menu.

![](/files/9f1feeffa6305f226dd10b8f63a27dd0e10e4799)

This page shows all users added to the account, displaying first and last names, email, and created date.

* Email address is the only required field, but can't be edited after a user is created
* To add a new user, tap the + icon at the top right
* To delete a user, tap the kabob menu at the top left
* The yellow warning icon indicates that the invitee has not yet changed their password and logged in

![](/files/9caf99b67fbea4674b771c7d3b6db374973608d4)

<details>

<summary><strong>Deleting Users</strong></summary>

Aiceberg uses AWS Cognito to manage user access. When a user account is deleted, existing session tokens will remain valid for up to one hour due to Cognito's token caching mechanism. This means users may continue to access the application during this period even after their account has been removed.

If you need to revoke user access immediately (for security reasons or other urgent situations), you'll need to handle this through your Single Sign-On (SSO) provider rather than through our application directly.

</details>

<details>

<summary><strong>Permissions &#x26; Roles</strong></summary>

This feature is in development.

Tap on the Roles tab to see how permissions are set for each role.

![](/files/f605bb1a8f4b87e38cc6fca1d719a63fe602c1ff)

Permissions and roles are not yet editable. The table is for information only.

![](/files/1cdb3205a86d5b68abd4fd9b86dbc69e06fc5e96)

The two available roles are Admin and Developer. Individual permission may allow view or edit access. In general, if a role is not allowed to view or edit a feature, that feature is not shown in the UI. If you need an additional role, please email <support@aiceberg.ai>.

The features currently controlled by permissions are:

* creation of API keys
* see prompt authors besides yourself
* use the prompt Cannon
* see prompt/response content created by other users
* see redacted content in Prompt Details
* see user management page

It's possible to add users without assigning a role; however, they will not be able to see any data in any page.

</details>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.aiceberg.ai/tools/how-do-i-manage-users-and-roles.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.