{
  "id": "access-control",
  "title": "Access control",
  "url": "https://redis.io/docs/latest/operate/rs/7.8/security/access-control/",
  "summary": "An overview of access control in Redis Enterprise Software.",
  "content": "\nRedis Enterprise Software lets you use role-based access control (RBAC) to manage users' access privileges. RBAC requires you to do the following:\n\n1. Create roles and define each role's access privileges.\n\n1. Create users and assign roles to them. The assigned role determines the user's access privileges.\n\n## Cluster access versus database access\n\nRedis Enterprise allows two separate paths of access:\n\n- **Cluster access** allows performing management-related actions, such as creating databases and viewing statistics.\n\n- **Database access** allows performing data-related actions, like reading and writing data in a database.\n\nYou can grant cluster access, database access, or both to each role. These roles let you differentiate between users who can access databases and users who can access cluster management, according to your organization's security needs.\n\nThe following diagram shows three different options for roles and users:\n\n\n\n- Role A was created with permission to access the cluster and perform management-related actions. Because user A was assigned role A, they can access the cluster but cannot access databases.\n\n- Role B was created with permission to access one or more databases and perform data-related actions. Because user B was assigned role B, they cannot access the cluster but can access databases.\n\n- Role C was created with cluster access and database access permissions. Because user C was assigned role C, they can access the cluster and databases.\n\n## Default database access\n\nWhen you create a database, [default user access]() is enabled automatically.\n\nIf you set up role-based access controls for your database and don't require compatibility with versions earlier than Redis 6, you can [deactivate the default user]().\n\n\nBefore you [deactivate default user access](), make sure the role associated with the database is [assigned to a user](). Otherwise, the database will be inaccessible.\n\n\n## More info\n",
  "tags": ["docs","operate","rs"],
  "last_updated": "2026-04-01T08:10:08-05:00",
  "children": [{"id":"create-users","summary":"Create users and assign access control roles.","title":"Create users","url":"https://redis.io/docs/latest/operate/rs/7.8/security/access-control/create-users/"},{"id":"create-cluster-roles","summary":"Create roles with cluster access only.","title":"Create roles with cluster access only","url":"https://redis.io/docs/latest/operate/rs/7.8/security/access-control/create-cluster-roles/"},{"id":"create-db-roles","summary":"Create roles with database access only.","title":"Create roles with database access only","url":"https://redis.io/docs/latest/operate/rs/7.8/security/access-control/create-db-roles/"},{"id":"create-combined-roles","summary":"Create roles with both cluster and database access.","title":"Create roles with combined access","url":"https://redis.io/docs/latest/operate/rs/7.8/security/access-control/create-combined-roles/"},{"id":"redis-acl-overview","summary":"An overview of Redis ACLs, syntax, and ACL command support in Redis Enterprise Software.","title":"Overview of Redis ACLs in Redis Enterprise Software","url":"https://redis.io/docs/latest/operate/rs/7.8/security/access-control/redis-acl-overview/"},{"id":"manage-users","summary":"Manage user account security settings.","title":"Manage user security","url":"https://redis.io/docs/latest/operate/rs/7.8/security/access-control/manage-users/"},{"id":"manage-passwords","summary":"Set password policies.","title":"Set password policies","url":"https://redis.io/docs/latest/operate/rs/7.8/security/access-control/manage-passwords/"},{"id":"ldap","summary":"Describes how Redis Enterprise Software integrates LDAP authentication and authorization. Also describes how to enable LDAP for your deployment of Redis Enterprise Software.","title":"LDAP authentication","url":"https://redis.io/docs/latest/operate/rs/7.8/security/access-control/ldap/"}]
}