Skip to main content
User groups let you manage access for a team at once instead of person-by-person. This is the recommended way to grant access in Cedar.
User groups list with search

Why use groups?

Easier management

Change access for many users at once

Clearer organization

Know exactly who has what access

Fewer mistakes

Reduce errors from individual assignments

Create a group

Click Create Group

From the User Groups page or Dashboard, click the Create Group button.

Name your group

Choose a clear, descriptive name like:
  • “Customer Admins”
  • “Operations Team”
  • “Billing Specialists”
Use names that describe the team’s function, not individual people.

Add users

Search for and add the users who should be in this group.

Bind to a role

Create a binding to connect this group to a role and scope. Without a binding, the group has no permissions.
Create User Group dialog with name, email, and description fields

Dialog fields explained

FieldRequiredDescription
NameYesA descriptive name for the group (e.g., “Operations Team”)
EmailNoOptional email address for the group
DescriptionNoBrief description of the group’s purpose

Group details

User group details panel
The detail panel shows:
  • Group name and email
  • Description
  • Role assignments (via bindings)
  • Members in the group

Add or invite users to a group

Users are invited to Cedar through the User Group detail page. This ensures every user has proper access from the start.
1

Select a group

Click on a group to open its detail panel.
2

Click the add button

In the Users in Group section, click the + button.
3

Enter email addresses

Type user email addresses and click Add for each one.
Invite user dialog
4

Send invitations

Click Add Users to complete. New users receive an invitation email; existing users are added immediately.
For details on user status and the invitation process, see the Users documentation.

Best practices

Keep names simple and specific

Good names describe the team’s function clearly. Avoid generic names like “Team 1” or names that include specific people.
✅ Good❌ Avoid
Customer AdminsAdmin Team
Billing SpecialistsJohn’s Team
Operations - WestGroup 1
Always assign access through groups, even if there’s only one person. This makes it easy to add more people later.
If different teams need the same role but on different scopes (e.g., different customers), create separate groups for each.
A group without a binding has no permissions. After creating a group, always create a binding to grant access.

Bindings

Connect groups to roles

Roles

Define what groups can do

Users

Manage individual accounts

Glossary

Key terms explained