Authentication & User Management
-
- Identity Provider (IdP): The Foundation of Sastrify Insights
- Uncover SaaS Usage and Shadow IT with Identity Provider (IdP) Discovery
- Integrating HRIS to Enrich Identities & Insights
- Admin Guide: Deploying the Sastrify Chrome Extension
- Admin Guide: Deploying the Sastrify Microsoft Edge Extension
- Manual Installation Guide: Sastrify Chrome Browser Extension
- Manual Installation Guide: Sastrify Edge Browser Extension
- Setting renewal dates & reminders
- Assigning & Modifying Subscription Owners
- Uploading & Managing Your SaaS Documents in Sastrify
- Sastrify App Support: Get Help & Give Feedback
- Sastrify's commitment to security and privacy standards
-
- Capturing Subscription Details with Contract AI
- Adding a New Subscription Manually
- Slack Integration: Bringing Sastrify into Your Internal Communication
- How to bulk upload your invoices
- Automating Document Uploads via Email Forwarding
- Managing Your Notification Preferences
- Tools and Spend Importer: Bulk Upload & Visualization
- Tool Matching: Aligning ERP Data with Your Inventory
- Managing Collaboration with Custom Tasks
- Task Automation: Standardizing and Automating Routine Actions
-
- Workflows: Automate procurement processes with consistency
- Requests: Streamline procurement process and internal approval
- Get Procurement Support for New Purchases and Renewals
- How to submit and track Procurement Requests via Jira Integration
- Scope of service: Custom benchmarking & contract review
- Scope of service: Negotiation & renewal support
- Scope of service: Custom SaaS Optimization Advisory
- Purchase your SaaS through the SastriMarket
-
- Connecting Your ERP & Accounting Software
- Spend Import: Validate and fine-tune your imported spend data
- Export spend data from Candis to Sastrify
- Export spend data from Spendesk to Sastrify
- Export spend data from Pleo to Sastrify
- Export spend data from Moss to Sastrify
- Export spend data from DATEV to Sastrify
- Export spend data from Ramp to Sastrify
-
- Configuring Authentication & Access
- User Management: Managing Users and Platform Roles
- Configuring Microsoft SSO Authentication
- Configuring Okta SSO Authentication
- Configuring JumpCloud SSO Authentication
- Configuring Cisco Duo SSO Authentication
- Configuring Cloudflare SSO Authentication
- Configuring OneLogin SSO Authentication
- Having trouble logging in?
- Understanding user roles and permissions
-
- Okta Identity Provider (IdP) Integration Guide
- Accounting & ERP: Connecting NetSuite to Sastrify
- Accounting & ERP: How to connect Quickbooks
- Accounting & ERP: How to connect Microsoft Dynamics 365
- Accounting & ERP: How to connect Workday ERP
- Accounting & ERP: How to integrate Pleo with Sastrify
- HRIS: Connecting Officient to Sastrify
-
- ERP & Accounting Integration FAQs
- SSO / IDP Discovery Integration FAQs
- Browser Extension FAQs
- HRIS Integration FAQs
- Usage Analytics FAQs
- Contract AI & Subscription Details FAQs
- Tools and Spend Importer FAQs
- Invoices FAQs
- Achieved Savings FAQs
- Form component guide for Sastrify form builder
- What is SaaS and Sastrify's scope of work?
- Who receives the renewal alerts or reminders?
- How does Sastrify work with currencies?
- Is the spend data from accounting export always up-to-date?
- How to work with benchmark prices
- When and how to involve Sastrify in a contract evaluation or negotiation?
- How does Sastrify interact with SaaS vendors?
- How do you handle confidentiality clauses in vendor contracts?
- Why is contract data essential for benchmarking and negotiation support?
Understanding user roles and permissions Print
Modified on: Mon, 9 Mar, 2026 at 2:46 PM
Assigning the right roles and permissions ensures that your team can collaborate effectively while maintaining strict data security. In Sastrify, access is governed by three distinct roles: Admin, Contributor, and Viewer.
Admin: Provides full, unrestricted access to the entire platform, including all settings and integrations.
Contributor: Designed for subscription owners and departmental stakeholders. They have access only to specific invited subscriptions.
Viewer: This is a read-only role. Unlike admins and contributors, this role cannot make any edits.
Detailed Permissions Matrix
The following table outlines what each role can perform across the platform's core features.
Permissions | Admin | Contributor | Viewer |
Inventory | |||
View subscription | ✔ | ✔ | ✘ |
Create subscription | ✔ | ✔ | ✘ |
Edit subscription | ✔ | ✔(1) | ✘ |
Delete subscription | ✔ | ✘ | ✘ |
View spend info | ✔ | ✔(1) | ✘ |
Manage spend | ✔ | ✔(1) | ✘ |
Manage documents | ✔ | ✔(1) | ✘ |
Create tasks | ✔ | ✔(1) | ✘ |
Add comments | ✔ | ✔(1) | ✘ |
| View Tool Catalogue | ✔ | ✔ | ✔ |
Risk Monitoring | |||
| View Shadow IT Radar | ✔ | ✘ | ✘ |
| Perform actions | ✔ | ✘ | ✘ |
Insights | |||
| View Insights | ✔ | ✘ | ✘ |
Procurement Support | |||
| Involve Sastrify | ✔ | ✔ | ✔ |
| View procurement supports | ✔ | ✔ | ✔ |
| Add comments | ✔ | ✔ | ✔ |
Requests | |||
View requests | ✔ | ✔ | ✔ |
Create requests | ✔ | ✔(1) | ✔ |
Edit requests | ✔ | ✔(1) | ✔(2) |
| Delete requests | ✔ | ✘ | ✘ |
Can be tagged in requests | ✔ | ✔ | ✘ |
| Can tag other users in requests | ✔ | ✔ | ✘ |
Savings | |||
| View savings | ✔ | ✔(1) | ✘ |
Integrations | |||
Manage integrations | ✔ | ✘ | ✘ |
| Manage identities | ✔ | ✘ | ✘ |
| Assign managers | ✔ | ✘ | ✘ |
Settings | |||
Invite users | ✔ | ✘ | ✘ |
Edit users | ✔ | ✘ | ✘ |
Delete users | ✔ | ✘ | ✘ |
Manage authentication | ✔ | ✘ | ✘ |
Create workflows | ✔ | ✘ | ✘ |
| Create automated tasks | ✔ | ✘ | ✘ |
Edit renewal settings | ✔ | ✘ | ✘ |
View renewal settings | ✔ | ✔ | ✔ |
Manage company-wide notifications | ✔ | ✘ | ✘ |
| Manage personal notifications | ✔ | ✔ | ✔ |
(1) This action is only available if the user has access to the appropriate subscription.
(2) Edit requests: Viewers can view, comment, attach documents, and act on tasks assigned to them. They cannot perform additional edits.
Did you find it helpful? Yes No
Send feedback