Team: Huntress EDR
Environment: Portal, Dashboard
Summary: How to set Huntress User Roles. 

Setting Huntress User Permissions

1Account-level

• User
• Admin

2Organization-level

• User
• Admin

For information on adding or managing users, see this article: Managing Huntress Users.

UPDATE: In the past, organization-level admins could not approve Assisted Remediation. Permissions were updated in Q2 2022 based on MSP partner feedback, and now all organization admins can approve Assisted Remediations.

If you have larger customers who need their own reporting integration, but still require your expertise (co-managed IT for example), you can submit the form below to initiate the process to become a Huntress Reseller.

Account-level 

NOTE: Account level Admins/Users can access any organizations listed under the account

Admin

Admins have full access to modify everything across Huntress and can view/modify billing information. 

User

Users can see most things throughout the Huntress Account and Organizations. 

Users can: 

• Create/Modify/Delete Organizations
• Download the Huntress installer (and view the account key) 
• View the account key
• Approve Assisted Remediation
• Reject Assisted Remediation
• Force a Managed AV update on a single target

Users cannot:

• Modify/add user 
• Modify/add integrations
• Bulk remove agents across organizations (but can delete whole organization)
• Do any bulk Managed AV actions such as quick/full scan, update or change audit/enforce mode
• Change Managed AV configuration on either account, org or single machine scope
• Force a Managed AV scan on a single target
• View/change billing information (including invoices and contracts) 
• Manage Incident Reports
• Change global preferences such as SAML SSO or manage Host Isolation settings.
• Add/remove exclusions
• Manually isolate hosts
• Manually deisolate hosts

Finance

• Limited to Billing and Invoices areas ONLY
  • View Past Invoices
  • View breakdown of agents per organization in an invoice 
  • View payment receipts 
• Update Payment Info
• Update Billing Info

Marketing

Marketing users can only access the Partner Enablement Service (PES).

UPDATE: The Finance and Marketing roles are new as of June 2022

Read-Only

Read-only users can see everything as a User can, but cannot modify/delete/add anything across the Huntress Dashboard.  

Organization-level 

NOTE: Organization-level Admins/Users cannot view or access any other organization 

skip to Organization-level Admin

User

Organization-level users can see most things throughout their Huntress Organization.

Org-level Users can: 

• View/Download Reports
• View investigations (within their Org(s))
• Uninstall individual Agents
• View Binaries/Autoruns/Collected Files/Canaries/External Recon
• Reject Assisted Remediation

Org-level Users cannot:

• View or access any other organization
• Download the Huntress installer (or view account key)
• Modify/add user 
• Modify/add integrations
• Bulk remove agents across organizations
• View/change billing information (including invoices) 
• Receive alert emails about new Incident Reports 
• Change global preferences
• Change Managed AV configuration on either account, org or single machine scope
• Do any bulk Managed AV actions such as quick/full scan, update or change audit/enforce mode
• Add/remove exclusions
• Manually isolate hosts
• Manually deisolate hosts
• Approve Assisted Remediation

Admin

An Organization-level Admin can do what Org-level users can plus: 

• Approve Assisted Remediation
• Add other Organization-level users
• Edit Organization name(s)
• Add/remove exclusions
• Change Managed AV configuration
• Perform bulk Managed AV actions 

Read-Only

Read-only users can see everything as a User can, but cannot modify/delete/add anything within the Organization.

UPDATE: In the past, organization-level admins could not approve Assisted Remediation. Permissions were updated in Q2 2022 based on MSP partner feedback, and now all organization admins can approve Assisted Remediations.