User roles
Every user has one of two global roles:| Role | What they can do |
|---|---|
| Admin | Full access to all admin settings, all Spaces, and all system configuration |
| User | Access only to Spaces they are invited to — cannot access admin settings |
Adding users
Set a temporary password
Enter a temporary password. The user will be asked to choose a new one on their first login.
Managing existing users
From Admin → Users, you can:- Change a user’s role — use the role dropdown on their row
- Disable a user — prevents login without deleting the account or their content
- Re-enable a user — restores access for a previously disabled account
- Edit a user’s profile — name, email, job title, and department
- Delete a user — permanently removes the account; their content is kept
- Unlock a locked account — if brute-force protection locked the account after failed login attempts
For users synced from LDAP or an identity provider, profile fields are managed in your directory — they cannot be edited in Collabase directly.
Groups
Groups let you manage Space access for entire teams at once. Instead of adding each person individually to every Space, you add them to a group — and the group gets access to the relevant Spaces. When someone joins the team, add them to the group. They immediately get access to all Spaces the group has. When they leave, remove them from the group and access is revoked everywhere at once.Creating a group
Add members
Open the group and go to the Members tab. Search for users by name or email and add them.
Automated provisioning (SCIM)
If you use an identity provider like Okta, Microsoft Entra, or JumpCloud, you can connect it to Collabase via SCIM. This automatically creates, updates, and deactivates user accounts based on your directory — without any manual work.Setting up SCIM
Generate a SCIM token
Go to Admin → Users and scroll to the SCIM Provisioning section. Click Generate Token. Copy the token immediately — it is only shown once.