AI Assistant Access Management

Configure access control for your AI Assistant instance, including user, team and organization sharing, API key generation, and public access settings.

Access Types Explained

Read only – Users can interact with the AI Assistant and view the full configurations of the assistant including the logs but cannot change anything in the assistant configuration (e.g: data sources, settings, access rights, etc).
Read and write – Full access, including interacting with the assistant, viewing logs, and modifying its settings.
Use only – Users can interact with the assistant, but cannot view all the assistant tabs hence cannot change the configuration.

Access Type	Interact	View Logs	Modify Settings
Read and write	✅	✅	✅
Read only	✅	✅	❌
Use only	✅	❌	❌

Share With Users

Share this AI Assistant with specific users by adding their usernames.

Steps:

Enter a valid username in the input field.
Select the access type.
Click the + button to add the user.

Share With an Organization

Grant access to all users in an organization.

Steps:

Input the organization's name.
Select access level.
Click + to add.

Two situations can occur:

Admins and organisation admins: The request is immediately granted. The assistant is shared with the whole organisation at the specified access level, and all members receive an email notification.

Other users: The request enters a review state. The organisation admin receives an email and can approve or delete it. Approval has the same effect as an immediate grant.

Once added, change the organization's access level or remove access using the delete button in the list.

Share With a Team

Grant access to a specific team.

Steps:

Input the team's name.
Select access level.
Click + to add.

Two situations can occur:

Admins, organisation admins, and team admins: The request is immediately granted. The assistant is shared with the whole team at the specified access level, and all members receive an email notification.

Other users: The request enters a review state. The team admin (or the organisation admin if none exists) receives an email and can approve or delete it. Approval has the same effect as an immediate grant.

Once added, change the team's access level or remove access using the delete button in the list.

Generate API Keys

Generate API keys for external systems to query this assistant.

Steps to generate:

Fill in the API key name.
Choose the desired access level.
Click the + button to generate a new key.
Make sure to copy the key immediatelyas it won't be shown again.

Important

Access type for an API key cannot be changed after creation. If you need different permissions, delete the key and create a new one.

Security Tip

Store your API key securely. Anyone with the key will have the access permissions granted.

Public Access

Control public access to this AI Assistant via link.

Accessible to everyone: Anyone with a link to the assistant can query it.
Accessible to everyone that is logged in: Only authenticated users can access the assistant through the link.
Not accessible: Default and most secure option, access is limited to configured users/teams/organizations.

Role-based Access

After sharing the AI Assistant, the tabs and actions available to users depend on their assigned role:

AI Assistant tabs are not accessible. Interaction is limited to the Chatbot interface.

Info

When an AI Assistant is shared with users, they will receive a notification by email. You can check all notifications available on Notifications page.

Logs

Prerequisites