# User Roles

Couchdrop has a very simple role structure. When thinking about users in Couchdrop, there are **Internal Users** and **External Users**.&#x20;

#### Internal Users

Internal Users are users within your organisation. Typically, they are management users with permission to configure and manage file transfers and can create/manage External Users.

{% hint style="success" %}
Internal users are managed from the **Administration --> Users** section of the Couchdrop interface. Internal users can only be managed by users who have the **Owner** **or Administrator** role
{% endhint %}

#### External Users

External Users are users that are sending and/or receiving files to/from your organisation. These accounts are normally very limited in scope and are often headless.&#x20;

{% hint style="success" %}
External users can be managed under **Users** in the main navigation if you are an **Owner, Administrator, or Manager,** as well as from the **Administration --> Users** page.
{% endhint %}

## Available Roles in Couchdrop

Couchdrop has four different types of user accounts.

<table><thead><tr><th width="196">Role</th><th>User Type</th><th>Description</th></tr></thead><tbody><tr><td>Owner</td><td>Internal</td><td><p>The account owner. Owner accounts have access to all functionality and settings, including billing and advanced security settings. </p><p><br>There can only be <strong>one</strong> Owner per Couchdrop account.</p></td></tr><tr><td>Administrator</td><td>Internal</td><td>Administrators have access to the Administration section of Couchdrop, but are still restricted in terms of what data they can access. </td></tr><tr><td>Team Members</td><td>Internal</td><td>Team members  in Couchdrop cannot access the Administration section, but they can create and manage External Users, create shared links, inboxes, mailboxes and other parts of the system used to exchange and transfer files. </td></tr><tr><td>External Users</td><td>External</td><td>External users are restricted accounts used for system or client access via SFTP, FTP, or the web interface to upload and download files in assigned folders. They have no access to administration features. </td></tr></tbody></table>

When creating a user, you must specify a role. This role can be adjusted at any time.

## Feature Restrictions

Feature access can be managed at multiple levels.&#x20;

| Level       | Configuration Location              | Description                                                                                         |
| ----------- | ----------------------------------- | --------------------------------------------------------------------------------------------------- |
| Globally    | Administration -> Security Settings | Update default access to features for all Managers and Standard Users across the Couchdrop account. |
| Group Level | Administration -> Groups            | Features can be enabled for all members of a specified group.                                       |
| User Level  | Administration -> Users             | Features can be enabled for an individual Standard User or Manager.                                 |
Role	User Type	Description
Owner	Internal	The account owner. Owner accounts have access to all functionality and settings, including billing and advanced security settings. There can only be one Owner per Couchdrop account.
Administrator	Internal	Administrators have access to the Administration section of Couchdrop, but are still restricted in terms of what data they can access.
Team Members	Internal	Team members in Couchdrop cannot access the Administration section, but they can create and manage External Users, create shared links, inboxes, mailboxes and other parts of the system used to exchange and transfer files.
External Users	External	External users are restricted accounts used for system or client access via SFTP, FTP, or the web interface to upload and download files in assigned folders. They have no access to administration features.