---
title: Access for Enterprises
description: >-
  Design and implement an access control strategy for your Datadog deployment at
  scale.
breadcrumbs: Docs > Getting Started > Access for Enterprises
---

# Access for Enterprises

## Overview{% #overview %}

This guide helps Datadog administrators at large organizations design and implement an access control strategy. It is intended for organizations that fit any of the following profiles:

- Have **100 or more users** across multiple teams or business units
- Operate in **regulated industries** with data sensitivity requirements
- Need to **expand Datadog usage** across more users and teams while maintaining governance

As organizations grow on Datadog, they face a core tension: enabling self-service for developers, operators, and business users while maintaining boundaries on who can see or change what. This guide provides a decision framework for resolving that tension, not step-by-step UI instructions.

## Prerequisites{% #prerequisites %}

This guide assumes familiarity with Datadog basics. Before starting, review:

- [Administrator's Guide: Getting Started](https://docs.datadoghq.com/administrators_guide/getting_started.md) for overall platform setup and onboarding
- [Getting Started with Teams](https://docs.datadoghq.com/getting_started/teams.md) for team structure, sync strategies, and ownership workflows
- [Access Control (RBAC)](https://docs.datadoghq.com/account_management/rbac.md) for Datadog's role and permission model

## Design and implement an access control strategy{% #design-and-implement-an-access-control-strategy %}

You can read this guide sequentially to plan a new access strategy, or jump to the section most relevant to your current challenge.

Each section addresses a layer of your access control strategy, from organizational structure through enforcement and auditing:

| Section                                                                                                                           | What to decide                                                          |
| --------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------------------------------------- |
| [Choosing Your Datadog Topology](https://docs.datadoghq.com/getting_started/access_for_enterprises/choosing_topology.md)          | Single org vs. multi-org, and when each is appropriate                  |
| [Permissions and Feature Access](https://docs.datadoghq.com/getting_started/access_for_enterprises/permissions.md)                | Custom roles, keeping roles current, role hygiene                       |
| [Assigning Users to Roles and Teams](https://docs.datadoghq.com/getting_started/access_for_enterprises/assigning_users.md)        | Roles vs. Teams, and how to assign users at scale                       |
| [Protecting Assets](https://docs.datadoghq.com/getting_started/access_for_enterprises/protecting_assets.md)                       | Restricting who can edit or view Dashboards, Monitors, and other assets |
| [Protecting Sensitive Data](https://docs.datadoghq.com/getting_started/access_for_enterprises/protecting_sensitive_data.md)       | Restricting access to telemetry data using Data Access Control          |
| [Credential Management](https://docs.datadoghq.com/getting_started/access_for_enterprises/credential_management.md)               | Managing API keys, app keys, and short-lived tokens at scale            |
| [Creating Access Policies](https://docs.datadoghq.com/getting_started/access_for_enterprises/creating_access_policies.md)         | A reference for choosing the right enforcement mechanism                |
| [Sharing Across Organizations](https://docs.datadoghq.com/getting_started/access_for_enterprises/sharing_across_organizations.md) | Cross-Org Visibility, Shared Dashboards, and multi-org governance       |
| [Example Implementations](https://docs.datadoghq.com/getting_started/access_for_enterprises/example_implementations.md)           | Enterprise implementation templates                                     |

## Next steps{% #next-steps %}

Start with [Choosing Your Datadog Topology](https://docs.datadoghq.com/getting_started/access_for_enterprises/choosing_topology.md) to determine whether your organization should use a single Datadog org or multiple orgs.

## Further reading{% #further-reading %}

- [Administrator's Guide: Getting Started](https://docs.datadoghq.com/administrators_guide/getting_started.md)
- [Getting Started with Teams](https://docs.datadoghq.com/getting_started/teams.md)
- [Access Control (RBAC)](https://docs.datadoghq.com/account_management/rbac.md)