Team Management
The Portal's team management section lets you invite users, assign roles, and control access to your organization's AI workspace. Only users with the admin or owner role can manage team members.
Inviting Users
- Navigate to Team in the Portal sidebar
- Click Invite User
- Enter the user's email address
- Select a role (admin or member)
- Click Send Invite
The invited user receives an email with a link to join the organization. When they sign in with Google, their account is automatically linked to your organization with the assigned role.
Auto-provisioning: When a user signs in with a Google account that matches an existing organization's domain, they may be automatically added to that organization depending on your configuration.
Roles
Workjet uses three roles to control access:
| Role | Description |
|---|---|
| Owner | Full access to everything. Can manage billing, delete the organization, and transfer ownership. Only one owner per organization. |
| Admin | Can manage team members, configure the gateway, set DLP policies, and access all portal features except billing and org deletion. |
| Member | Can use the desktop app, run skills, create assistants and engines, and view their own usage. Cannot access admin settings. |
Role Permissions
| Permission | Owner | Admin | Member |
|---|---|---|---|
| Use chat, assistants, engines | Yes | Yes | Yes |
| Create and manage skills | Yes | Yes | Yes |
| View own usage | Yes | Yes | Yes |
| View team usage | Yes | Yes | No |
| Invite and remove users | Yes | Yes | No |
| Configure gateway routing | Yes | Yes | No |
| Manage DLP policies | Yes | Yes | No |
| View audit logs | Yes | Yes | No |
| Create API keys | Yes | Yes | No |
| Manage billing | Yes | No | No |
| Delete organization | Yes | No | No |
| Transfer ownership | Yes | No | No |
Changing a User's Role
- Navigate to Team in the Portal
- Find the user in the team list
- Click the role dropdown next to their name
- Select the new role
- Confirm the change
Note: Only the owner can promote a member to admin. Ownership can only be transferred by the current owner.
Removing Users
- Navigate to Team in the Portal
- Find the user to remove
- Click the Remove button (or the three-dot menu > Remove)
- Confirm the removal
Removed users immediately lose access to the organization's workspace, skills, and data. Their personal API keys are revoked, and active sessions are invalidated.
Next Steps
- Configure gateway settings for your team
- Review usage analytics by user
- Set up DLP policies for data protection