User and service accounts
As an administrator of a Materialize organization, you can manage the users and apps (via service accounts) that can access your Materialize organization and resources.
Organization roles
Each user/service account in Materialize is associated with an organization role:
| Organization role | Description |
|---|---|
| Organization Admin |
|
| Organization Member |
|
When creating a new account for your Materialize organization, you assign an organization role to the account. As such, before creating a new account, determine the appropriate access level needed for the new accounts.
User accounts
As an Organization administrator, you can invite new users via the Materialize Console. When you invite a new user, Materialize will email the user with an invitation link.
-
Until the user accepts the invitation, the user is listed as Pending Approval.
-
When the user accepts the invitation, the user can set the user password and log in to activate their account. During activation (i.e., the first time the user logs in), a role with the same name as their e-mail address is created.
For instructions on inviting users to your Materialize organization, see Invite users.
Service accounts
As an Organization administrator, you can create a new service account via the Materialize Console or via Terraform.
For instructions on creating a new service account in your Materialize organization, see Create service accounts.
Single sign-on (SSO)
As an Organization administrator, you can configure single sign-on (SSO) as an additional layer of account security using your existing SAML- or OpenID Connect-based identity provider. This ensures that all users can securely log in to the Materialize Console using the same authentication scheme and credentials across all systems in your organization.
To configure SSO for your Materialize organization, follow this step-by-step guide.