Skip to main content

Team ownership entity editing

With the Team ownership entity editing setting, organizations can restrict the ability to edit entities in Cortex to the teams and members who own them without granting generic edit permissions to all users in a workspace. Entity ownership must be defined for the setting to work.

You can also enable edit access to all team members by default.

caution

Entity ownership must be defined to enable team ownership entity editing.

Enable team ownership entity editing

To enable this feature:

  1. Go to the Entities settings page and click the Teams tab.
  2. Toggle on the setting for Team ownership entity editing.
    • By enabling this feature for the workspace, the default user role will be automatically updated and will not include generic permissions for editing entities.
    • Note that the Edit catalogs permission will supersede the Team ownership entity editing feature, so any users assigned a custom role with that permission will be able to continue editing all entities, regardless of ownership. Remove the Configure catalogs permission from the custom role(s) to restrict the ability to edit entities.
  3. To enable edit access to all members of the team who owns an entity, you can also toggle on the setting Give edit access to all team members.

In the UI, there are toggles for "Team ownership entity editing" and "Give edit access to all team members"

info

The Configure catalogs permission supersedes Team ownership entity editing.

Specify team editors

You can also define specific users within a team who can edit owned entities. Note that you cannot specify users if you have enabled the setting Give access to all team members in the Entities settings page.

To do this:

  1. Go to the details page for the team you'd like to set editors for and click Configure entity.
  2. Select Members in the side nav. team entity editing 2
  3. Toggle Editor on for any members who should have edit permissions for owned entities.
    • If a team member does not have an associated Cortex account, they cannot be marked as an editor; the toggle for such users will be grayed out. team entity editing 3
  4. Once you've selected all editors, click Save.

When you navigate to the team page in Cortex and view the Members tab, any members who were marked as editors will display with an Editor label. If a team member's identity mapping has not yet been configured, they will not be listed as an Editor here.

team entity editing 4

Edit a team-owned entity

If a team member is designated as an editor, they can click the Entities tab on the team details page to see all entities that they have permission to edit.

team entity editing 5

An editor will see the Configure entity button on the details page for all those entities and the team itself.

team entity editing 6

If a user is not an editor of a team, they will not be able to see the Configure entity button for any entities owned by the team or the team itself.

FAQ

Can team editors import entities?

No, team editors can not import entities. To import entities, a user must have the Configure catalog permission, which also gives users the permission to edit ALL entities, not just the ones they own.

Can team editors delete entities they own?

No, team editors can not delete any entities, even if they own them.

Why does a team member not have the Editor label after I enabled edit access to all team members?

This can happen if the team member's identity mapping has not been configured.