Overview

This guide helps Datadog administrators at large organizations design and implement an access control strategy. It is intended for organizations that fit any of the following profiles:

• Have 100 or more users across multiple teams or business units
• Operate in regulated industries with data sensitivity requirements
• Need to expand Datadog usage across more users and teams while maintaining governance

As organizations grow on Datadog, they face a core tension: enabling self-service for developers, operators, and business users while maintaining boundaries on who can see or change what. This guide provides a decision framework for resolving that tension, not step-by-step UI instructions.

Prerequisites

This guide assumes familiarity with Datadog basics. Before starting, review:

• Administrator’s Guide: Getting Started for overall platform setup and onboarding
• Getting Started with Teams for team structure, sync strategies, and ownership workflows
• Access Control (RBAC) for Datadog’s role and permission model

Design and implement an access control strategy

You can read this guide sequentially to plan a new access strategy, or jump to the section most relevant to your current challenge.

Each section addresses a layer of your access control strategy, from organizational structure through enforcement and auditing:

Next steps

Start with Choosing Your Datadog Topology to determine whether your organization should use a single Datadog org or multiple orgs.

Further reading

Additional helpful documentation, links, and articles:

Administrator's Guide: Getting StartedDOCUMENTATION Getting Started with TeamsDOCUMENTATION Access Control (RBAC)DOCUMENTATION