apm_api_catalog_read

View API catalog and API definitions.

apm_api_catalog_write

Add, modify, and delete API catalog definitions.

user_access_manage

Disable users, manage user roles, manage SAML-to-role mappings, and configure logs restriction queries.

user_access_read

View users and their roles and settings.

user_access_invite

Invite other users to your organization.

ci_visibility_read

View CI Visibility.

cases_read

View Cases.

cases_write

Create and update cases.

cloud_cost_management_read

View Cloud Cost pages. This does not restrict access to the cloud cost data source in dashboards and notebooks.

cloud_cost_management_write

Configure cloud cost accounts and global customizations.

dashboards_read

View dashboards.

dashboards_write

Create and change dashboards.

dashboards_public_share

Generate public and authenticated links to share dashboards or embeddable graphs externally.

monitors_downtime

Set downtimes to suppress alerts from any monitor in an organization. Mute and unmute monitors. The ability to write monitors is not required to set downtimes.

monitors_read

View monitors.

monitors_write

Edit and delete individual monitors.

events_read

Read Events data.

hosts_read

List hosts and their attributes.

org_management

Edit org configurations, including authentication and certain security preferences such as configuring SAML, renaming an org, configuring allowed login methods, creating child orgs, subscribing & unsubscribing from apps in the marketplace, and enabling & disabling Remote Configuration for the entire organization.

incident_read

View incidents in Datadog.

incident_settings_write

Configure Incident Settings.

incident_write

Create, view, and manage incidents in Datadog.

metrics_read

View custom metrics.

timeseries_query

Query Timeseries data.

security_monitoring_filters_read

Read Security Filters.

security_monitoring_filters_write

Create, edit, and delete Security Filters.

security_monitoring_findings_read

View CSPM Findings.

security_monitoring_rules_read

Read Detection Rules.

security_monitoring_rules_write

Create and edit Detection Rules.

security_monitoring_signals_read

View Security Signals.

security_monitoring_suppressions_read

Read Rule Suppressions.

security_monitoring_suppressions_write

Write Rule Suppressions.

apm_service_catalog_read

View service catalog and service definitions.

apm_service_catalog_write

Add, modify, and delete service catalog definitions when those definitions are maintained by Datadog.

slos_corrections

Apply, edit, and delete SLO status corrections. A user with this permission can make status corrections, even if they do not have permission to edit those SLOs.

slos_read

View SLOs and status corrections.

slos_write

Create, edit, and delete SLOs.

apm_read

Read and query APM and Trace Analytics.

synthetics_global_variable_read

View, search, and use Synthetics global variables.

synthetics_global_variable_write

Create, edit, and delete global variables for Synthetics.

synthetics_private_location_read

View, search, and use Synthetics private locations.

synthetics_private_location_write

Create and delete private locations in addition to having access to the associated installation guidelines.

synthetics_read

List and view configured Synthetic tests and test results.

synthetics_write

Create, edit, and delete Synthetic tests.

teams_manage

Manage Teams. Create, delete, rename, and edit metadata of all Teams. To control Team membership across all Teams, use the User Access Manage permission.

teams_read

Read Teams data. A User with this permission can view Team names, metadata, and which Users are on each Team.

usage_read

View your organization's usage and usage attribution.

create_webhooks

Create webhooks integrations.