Roles and permissions
✔︎ Prey Tracking
✔︎ Prey Protection
✔︎ Prey Full Suite
Your Prey panel gives you the option to create multiple roles for your team, allowing you granular control on who can access which feature within your panel. You can set them up directly in the Settings > Users, roles & permissions section.
By default, your account will have three roles that cannot be modified or removed:
- Owner: This role will be automatically assigned to the user created when your account is activated. It has all permissions granted by default, and its login email cannot be modified; note that you can only have one Owner per account. If you need to change the account owner, please contact our Support team.
- Admin: A top-level role that allows for use of most of Prey's functionalities with minimal limitations, such as changing your subscription or closing your Prey account.
- User: The user role can only execute security actions on the devices assigned to them.
If your account was created before October 26th, 2022, you won't see an Owner role. In this case, the Admin role will have the same permissions the Owner role has.
In addition to these three default roles, you can create custom roles and assign them granular permissions according to your organization's needs. To do so, all you have to do is click the Create new role button and enter the required information in the modal as seen in the screenshot below:
After that, you'll be required to select the permissions you'd like to assign for that role. You can select a full category of permissions, or click the arrow to expand each category and select the granular permissions you'd like to activate for this role, as seen below:
Once you click Continue, you'll see all the roles you've created.
You can review the details of each role, and the permissions assigned to them in with the eye icon, edit the role and its permissions with the pencil icon, and delete the role with the trash can icon.
Keep in mind!
When editing a role, if you change permissions that a user with that role is currently using, they will be automatically redirected to the panel Dashboard once the change is saved.
If you delete a role, any user assigned that role will be assigned the user role by default; you can change this later in the Users tab, under Users, roles & permissions. You can read more about this in our help center article on Creating additional accounts for your team.
What about that granularity?
Below you can find a list of each customizable permission, and which default role has them.
These permissions grant access to the specific Settings options detailed above. Any action related to those settings that can be executed outside of the Settings menu is not included in the permission and, if not detailed in this article, will be allowed to all users (for instance, linking Apple devices to the Prey APNS certificate.)
These permissions allow you granular control over who can loan devices and execute security actions. Please note that all security actions are bundled, so any role granted this permission will be able to execute all actions within the device view.
The Manage account devices permission allow any user with this permission to see and manage all the devices within the account, whether they added it themselves or not. Keep in mind that device ownership is not transferable.
These permissions allow the user granted them access to the specified view, and to execute all actions and configurations within them.
And that's about it! With this information you should now be able to create custom roles for your organization, and customize Prey to your specific needs!