Deep Dive

Security &
Team Management

Collaborate securely with multi-account team support, browser-based SSH access, per-instance firewalls, and granular role-based permissions for both users and administrators.

Get Started
New in v2.2

Team Management

Invite team members to your account with role-based access control. Support for multi-account switching, three predefined roles, and granular permissions across every resource type.

  • Multi-account system

    Users can belong to multiple accounts and switch between them seamlessly

  • Three-tier RBAC

    Predefined Admin, Operator, and Viewer roles with customizable permissions

  • 15 permission groups

    Granular control over instances, VPCs, databases, billing, monitoring, and more

  • Account switching

    Switch between team accounts instantly from the sidebar without logging out

  • Invitation workflow

    Invite by email with automatic account setup and timezone inheritance

Switch Account

sidebar
AC
Acme Corp

Owner

DS
DevStudio Inc

Admin

CL
CloudLabs

Viewer

Predefined Roles

Admin
Full access
Operator
Manage resources
Viewer
Read-only

Security Groups & IP Sets

Define firewall rules at the instance level with reusable IP sets. Apply consistent security policies across your fleet.

Inbound & Outbound Rules

Control traffic in both directions with protocol, port range, and CIDR filtering.

IP Sets

Create reusable named lists of IP addresses and CIDRs. Reference them across multiple security groups.

Protocol Support

TCP, UDP, ICMP, and custom protocol rules with flexible port range configuration.

Multi-instance Attach

Attach security groups to multiple instances. Changes sync automatically to all hypervisors.

Real-time Sync

Rules propagate to hypervisors via iptables/nftables within seconds of any change.

Admin Oversight

Administrators can view and manage all security groups and IP sets across all users.

Admin Permissions

role: Support
Instances
view manage
Users
view manage
Hypervisors
view manage
Billing
view manage
Networking
view manage
Super Admin
Unrestricted access
Support
View + manage instances
Billing
Credits + user management
Instance Manager
Instance lifecycle only

Admin Role-Based Access

Control what administrators can see and do with 68 granular permissions across 16 resource groups. Four system roles out of the box, with the ability to create custom roles.

  • 68 permissions

    Fine-grained control over every admin action -- from viewing instances to managing billing

  • 16 resource groups

    Permissions organized by domain: instances, users, hypervisors, networking, billing, and more

  • Four system roles

    Super Admin, Support, Billing, and Instance Manager -- ready to use out of the box

  • Custom roles

    Create additional roles with any combination of permissions for your team structure

  • Super Admin bypass

    Super Admins have unrestricted access regardless of role assignment

Ready to secure your infrastructure?

Set up team access, configure security groups, and control admin permissions. Start with a free 30-day trial.

Get Started