Assign roles and permissions to users You can manage your team—invite/add new users, assign roles, and (upcoming) update roles—through the Vaultera Switch Control Center. Currently, Vaultera Switch offers 13 default roles you can configure.

Default Roles

Each default role comes with predefined permissions:
  1. Organization Admin
    • Full access to the platform, including user management, transaction oversight, system configuration, and reconciliation.
    • Can create new merchants from the dashboard.
  2. Merchant Admin
    • Full access to merchant-related information, including user management, transaction oversight, and system configuration.
    • Cannot create new merchants but can manage all other merchant operations.
  3. Profile Admin
    • Full control over profile-level operations, connectors, workflows, analytics, users, and merchant details.
    • Can manage and configure all aspects of the profile.
  4. Merchant Developer
    • Can create and manage API keys.
    • View access to operations, connectors, analytics, users, and merchant details, with permission to manage merchant details.
  5. Profile Developer
    • Can create and manage API keys for the profile.
    • View and manage access to operations, connectors, analytics, users, and merchant details.
  6. Merchant Operator
    • Can view and manage payment-related information, including refunds, mandates, and disputes.
    • View-only access to workflows, connectors, analytics, users, and merchant details.
  7. Profile Operator
    • Can manage payment-related operations at the profile level.
    • View access to connectors, workflows, analytics, users, and merchant details.
  8. Merchant IAM
    • Can invite or add users to the merchant account.
    • Restricted access to other modules, including operations, analytics, and merchant details.
  9. Profile IAM
    • Can invite or manage users within the profile.
    • Restricted access to operations, analytics, and merchant details.
  10. Profile View Only
  • View-only access to all modules: operations, connectors, workflows, analytics, users, and merchant details.
  1. Merchant View Only
  • View-only access to all modules within the merchant scope: operations, connectors, workflows, analytics, users, and merchant details.
  1. Profile Customer Support
  • Can view transaction details and customer information necessary for handling queries and support issues.
  • View access to operations, analytics, users, and merchant details.
  1. Customer Support
  • Can access transaction details and customer information needed for handling support queries.
  • View access to merchant operations, analytics, users, and merchant details.

Permissions Matrix (Sample Categories)

PermissionOrg AdminMerchant AdminPayment OperatorCustomer SupportDeveloperIAMView Only
View operations
Manage operations
View connectors
Manage connectors
View workflows (routing, 3DS)
Manage workflows
View analytics
View team/users
Manage team/users
View merchant details
Manage merchant details
Create a merchant
These roles are structured to reflect typical operational hierarchies found in most organizations.

Custom Roles

Custom roles let organizations define permissions tailored to their unique workflows and operational needs.
Custom roles can only be created at the merchant level.

How to create a custom role:

  1. Go to Settings → Users in the Vaultera Switch Dashboard.
  2. Switch to the Roles tab and click Create Custom Role.
  3. Define the scope and set specific permissions for the new role.

Assigning Roles and Permissions: Walkthrough

1. Access User Management

Admins can navigate to Settings → Team on the dashboard to manage users.

2. Create or Invite New Users

Add new team members by entering their details and assigning a role based on their responsibilities.
  • If email service is enabled, an invitation is sent via email.
  • If not, a user is created for the associated merchant_id with a random password that can be shared manually.

3. Modify Existing Roles (Upcoming Feature)

Soon, you’ll be able to adjust roles for existing users to reflect changes in their responsibilities or positions.