This article describes the [permissions](/docs/settings/identity-access-management/permissions) needed to access the list of workspaces, enter a workspace, and access the user's own data.

To set the permissions, you need to create a user role or edit an existing one and open the Permissions matrix. In the matrix, the permissions are collected into groups. Some of these groups can be expanded to set more granular permissions.

## How to read this list

In this article, each heading describes an action. The permissions for that action are described in the form of breadcrumbs.

**For example**, if the required permissions are:
- **Profiles** > **Client list**: `read`
- **Search engine**: `create`, `edit`

The permission matrix needs to look like this:
<figure><img src="/api/docs/image/54176ad07f146575310749eba44b7c2f42c1b327/docs/settings/_gfx/permissions-example.png" class="large" alt="Permissions example"><figcaption>Permission example, see description above figure.</figcaption></figure>

The `read` permission is not explicitly listed when any higher permission is required - the portal enables it automatically.

## I want to...

### access the list of workspaces

You need to log in. Additional permissions are not required.

### enter a workspace

You need to be invited to the workspace. Additional permissions are not required, but with no permissions, you can only access your own account details.

### see and change my own account settings

You need to log in. Additional permissions are not required.