Create and Manage Users
The Portal Users page controls who can access your Harmonic portal and what they can do once they’re in. Built-in roles let you give every user the right level of access for their responsibilities.
To get to this page, go to Settings > Portal Users from anywhere in the Harmonic portal.
Viewing Portal Users
List and Card views
List View (default) displays users in a table.
Card View presents the same information in cards for quick scanning.
Sorting
Click a column header or use the Sort By dropdown to sort by Portal User, Status, or Last Logged In.
Filtering
Use the filters to narrow the list:
Find: Search by email address
Time Range: Filter by Last Logged In (7 days, 30 days, 90 days, or 1 year)
Status: Show Active, Disabled, or All users
Each user entry displays their email, status (Active or Disabled), date created, and last login date.
Pending & Expired Invites
Click the Pending & Expired Invites button in the top-right corner to view users who were invited but have not activated their accounts. Invites expire after 14 days.
You can resend invitations individually from the ellipsis menu or in bulk by selecting multiple users. Use the Back to Portal Users button or breadcrumbs to return to the main page.
Managing Portal Users
When you add a new user, you’ll be prompted to assign one of Harmonic’s predefined roles.
You can update a user's role by selecting a new option from the Role dropdown or by using the Actions menu.
To disable a user, open the ellipsis menu and select Disable Portal User, or use the Actions menu.
Roles
Harmonic provides four predefined roles to help you manage user access consistently across the platform. Each role is designed to match common responsibilities and ensures users only see what they need.
Admin
Access to all platform features, including settings, scenario configuration, user roles, and all sensitive data.
Analyst
View all platform areas, including settings (read-only). Investigate alerts with access to sensitive data such as file and prompt content. Can download files and edit detection feedback. Cannot modify configurations or manage users.
Observer
View all areas of the platform, including settings (read-only). Can view alerts but cannot see sensitive data like file or prompt content. Cannot access investigations.
Reporter
Read-only access to Insights, Discover, Applications, and Employees. Cannot navigate to other parts of the platform or view alerts, investigations, or sensitive data.
IT Support
Full access to Integrations and Settings areas, including configuration changes. Cannot view any other areas, including Insights, Applications, Employees, Alerts, or Investigations.
Permissions
The table below outlines which features and actions are available to each role. Use it to compare access levels and confirm the right permissions before assigning roles.
Read Insights
✅
✅
✅
✅
Read Discover
✅
✅
✅
✅
Read Employees
✅
✅
✅
✅
Read Applications
✅
✅
✅
✅
Read Alert Metadata
✅
✅
✅
Read Alert Overview & Alert Summary
✅
✅
Read Alert Sensitive Data
✅
✅
Download File from Alert
✅
✅
Delete Alert
✅
Edit Detection Feedback
✅
✅
Read Investigations
✅
✅
Manage Investigation
✅
Read integrations
✅
✅
✅
✅
Manage integrations
✅
✅
Read configuration designer
✅
✅
✅
✅
Manage configuration designer
✅
✅
Read customize interventions
✅
✅
✅
✅
Manage customize interventions
✅
✅
Read custom groups
✅
✅
✅
✅
Manage custom groups
✅
✅
Read global detection settings
✅
✅
✅
✅
Manage global detection settings
✅
✅
Read email domains
✅
✅
✅
✅
Manage email domains
✅
✅
Read portal users
✅
✅
✅
✅
Manage portal users
✅
✅
Read api keys
✅
✅
✅
✅
Manage api keys
✅
✅
Read deployment monitoring
✅
✅
✅
✅
Last updated
