User roles and teams

Add and manage users and teams in Liminal Vaults.

User roles

In Liminal Vaults, an organisation is a workspace where businesses like exchanges can manage their day-to-day operations on their wallets, transactions, policies, etc. The platform has role-based access control, meaning that depending on the type of role assigned to a user, they will have predefined access and control on the features within the platform.

The owner of the organisation is onboarded first in an organisation, who can further add other users—admins and members to the organisation. All users have their distinct roles and responsibilities to handle various tasks in the organisation. The following table illustrates different types of access and permission allowed for each role. Note that the admin and members can take the applicable actions on the wallets they are associated with.

FeatureType of access and permissionOwnerAdminMember
Home > Pending ActionsView and approve pending transactions
Home > Pending ActionsView and approve pending policies
Wallets > WalletsEnable, disable, update Autogas refill
Wallets > WalletsSend transactions (for warm MPC and cold multisig wallets)
Wallets > WalletsReceive transactions
Wallets > WalletsCreate refill schedule (for cold multisig wallet)
Wallets > WalletsArchive a wallet
Wallets > Wallets > OverviewView all assets and balances
Wallets > Wallets > Addresses (for deposit wallets)Search an address in a deposit wallet
Wallets > Wallets > HistoryDownload transactions report
Wallets > Wallets > PolicyView and search a policy
Wallets > Wallets > PolicyAdd or remove a policy
Wallets > Wallets > SettingsAdd users with view access
Wallets > Wallets > SettingsDownload key card
Wallets > ExchangeSearch exchange accounts
Wallets > ExchangeCreate an exchange account
Wallets > ExchangeSend and receive transactions
Wallets > RefillsView, search, add, approve all refill wallets
Wallets > RefillsPush a refill transaction
Wallets > StakingView staking
Wallets > StakingCreate a staking account
Wallets > StakingStake, unstake, and claim rewards
Wallets > StakingWithdraw amount from the staking account
Wallets > Gas Station > BalanceView balances
Wallets > Gas Station > HistoryView history
Wallets > Gas Station > RulesView Gas Station rules
Wallets > Gas StationRefill a Gas Station wallet, edit or disable rules of a Gas Station wallet
HistoryView all successful, pending, and rejected transactions
HistoryRescan missing transactions
HistoryDownload reports
Reports > Holding statementDownload holding statement report
Reports > Account statementDownload account statement report
Reports > Compliance reportDownload compliance report
Reports > Audit logsView and filter audit logs using transactions, policies, users, teams, wallets options
Reports > Audit logsFilter audit logs for any user
Apps > Notabene,
TRM
View and set up all available apps
Dev > Configure > Download SDKDownload SDK
Dev > API keyGenerate and manage API keys
Dev > WebhooksConfigure, search, retry, resend, and filter successful and failed webhooks.
Dev > Smart ConsolidationView all configured rules and add, remove, and update a Smart Consolidation rule
Settings > User ManagementView and invite usersView only
Settings > User ManagementInvite members and adminsInvite members only
Settings > User ManagementView and create teams
Settings > Policy managementView and add policy rulesView only
Settings > Policy managementEdit minimum approvals (admin quorum)
Settings > Policy managementView firewall policies
Settings > Wallet key cardsView and download all wallet key cards
Settings > Notifications and alertsView, filter, add, edit, disable, delete, alerts
Settings > ComplianceView and set up TRM and Notabene
Settings > SecuritySearch and filter audit logs

Add users to your organisation

As an owner of your organisation, you can add admins and members to your organisation. And as admins, you can add only members. Adding users with their limited access and permissions in your organisation allows you to divide tasks among different users and manage them conveniently. Refer to the Add users to your organisation guide to add users.

Edit a user role

A user onboarded as an admin or member role can be changed in the organisation. This eliminates the need to create two separate accounts. The owner of the organisation can re-assign roles to users in Liminal Vaults. For example, changing a user with the role of an admin to a member, or vice versa.

Take the following steps to change a user role.

  1. Log into Vaults.
  2. Go to Settings. Under User Management > Users, select View.
  3. Select the three dots icon corresponding to the user whose role you want to change.
  4. Select Mark as Member or Mark as Admin to change the role.


  1. Enter the code in the field you received in the Google Authenticator mobile app against the credentials with which you have signed into Vaults.
  2. Select Continue to authenticate yourself.

Teams

A team in a wallet is a group of users who collaboratively manage your wallet transactions. You can create teams of transaction initiators and signers. Transaction initiators are responsible for initiating transactions from a wallet. Transaction signers are responsible for signing the transactions, using the appropriate signing devices like mobile phone for warm MPC wallets and Ledger for cold multisig wallets. You can create teams and then assign them at the time of creating a new wallet.

📘

Note:

  • All users (owner, admin, member) can be added to a team of transaction initiators and signers.
  • A user who has set up their signing devices like mobile phone or Ledger, can be added to the team of signers.
  • Users' team roles (initiator or signer) are limited to the wallet assigned to their team. The same user may have a different role in another wallet.

Create a team of users

An owner or admin of your organisation, you can set up teams of users (owner, admins, members) who can initiate or sign transactions from warm MPC wallets. Refer to the Create a team of initiators to create an initiator team. Refer to the Create a team of signers to create a signer team.

Once done, you can assign the team while creating new warm MPC wallets.

Edit users in a team

As an owner of your organisation, you can edit the members of a team. A team is assigned one-time at the time of creating new wallets. With the ability to edit members of a team, you can update users in a team that is already assigned to the existing wallets. You can also view all the associated wallets and the preconfigured minimum number of users for each wallet.

As an owner, take the following steps to edit users in a team.

  1. Log into Vaults.
  2. Go to Settings > User Management > Teams. Then select View.


  1. Select the three dots icon for a team and then select Edit Team.


  1. You can add or remove users from the team.

  1. Select Edit Team to confirm the changes.

📘

Note:

  • You will receive an alert in case the number of users are inadequate in any wallet as per its configuration, as shown in the following screenshot.
  • Deleting a team is not currently supported in Liminal Vaults.