Inviting Your Team

Seliq uses role-based access control (RBAC) to manage what team members can see and do. Set up your roles before inviting analysts to avoid needing to adjust permissions later.

User roles

Role	Who it’s for	Key permissions
Owner	Workspace creator / account owner	Full access, billing, delete workspace
Admin	SOC Lead, Head of Operations	Manage integrations, users, SLAs, and all settings
Analyst	Tier 1 / Tier 2 SOC analysts	View and action incidents, write notes, update status
Read-only	Managers, auditors, client stakeholders	View incidents and reports; no write access

MSSP client access

If you want to give a client view-only access to their own incident queue and reports, use the Client Portal feature rather than a Read-only workspace user. Client Portal access is scoped strictly to that client’s data. See Setting Up Client Workspaces for details.

How to invite a team member

1. Go to Settings → Team
2. Click Invite member
3. Enter their work email address
4. Select a role from the dropdown
5. Click Send invitation

The invitee receives an email with a one-time signup link. Links expire after 72 hours. You can resend or revoke pending invitations from the same settings page.

Managing existing users

From Settings → Team you can:

• Change a user’s role — takes effect immediately on next page load
• Deactivate a user — revokes access without deleting their activity history
• Remove a user — permanently removes access; their incident notes and audit entries are preserved

SSO and directory sync

Coming soon

Single Sign-On (SSO) via SAML 2.0 and SCIM directory sync (for automatic provisioning/deprovisioning via Okta, Azure AD, and Google Workspace) are on the roadmap. Contact us if SSO is a hard requirement for your deployment timeline.