Settings & Configuration
Creating custom roles and permissions
4 minutes read time Difficulty: intermediate
Creating custom roles and permissions
Control exactly what each team member can see and do with granular role-based access control.
Default roles
AIsoule comes with these built-in roles:
| Role | Access level |
|---|---|
| Admin | Full access to everything |
| Agent | Chat, contacts (assigned only), templates (read) |
Creating a custom role
- Go to Settings → Roles
- Click "New Role"
- Enter a role name (e.g., "Sales Agent", "Support Lead", "Campaign Manager")
- Configure permissions using the matrix
Permission matrix
Each resource has up to 3 permission levels:
| Level | What it allows |
|---|---|
| Read | View data |
| Write | Create and edit |
| Delete | Remove data |
Available resources
| Resource | Controls access to |
|---|---|
| Contacts | Contact list, details, custom fields |
| Campaigns | Campaign creation, sending, management |
| Templates | Template creation and editing |
| Chatbot | Flow builder, keywords, AI settings |
| Users | User management |
| Teams | Team configuration |
| Roles | Role management |
| Accounts | WhatsApp account settings |
| Webhooks | Webhook configuration |
| API Keys | API key management |
| Audit Logs | View activity logs |
| Analytics | Dashboard and reports |
| Billing | Subscription and invoices |
Example role configurations
Sales Agent
- Contacts: Read + Write
- Campaigns: Read + Write
- Templates: Read only
- Analytics: Read only
- Everything else: No access
Support Lead
- Contacts: Read + Write + Delete
- Campaigns: Read only
- Templates: Read + Write
- Users: Read only
- Analytics: Read only
- Audit Logs: Read only
Campaign Manager
- Contacts: Read only
- Campaigns: Read + Write + Delete
- Templates: Read + Write
- Analytics: Read only
Assigning roles to users
- Go to Settings → Users
- Click on a user
- Change their Role dropdown
- Save
The user's access updates immediately — no logout required.
Tips
- Principle of least privilege — Give only the access needed
- Don't give everyone Admin — Create specific roles instead
- Review quarterly — Remove access that's no longer needed
- Use for compliance — Audit logs show who did what
- Test roles — Log in as a test user to verify the role works correctly
Related Articles
Was this guide helpful?
Your feedback helps us make these guides better for everyone.