User Management & Invitations
LakeSentry uses an invitation-based system for adding users to your organization. Admins and owners can invite team members by email, assign roles, and manage access. This page covers the full user lifecycle from invitation to removal.
For details on what each role can do, see Roles & Permissions.
User roles overview
Section titled “User roles overview”| Role | Description |
|---|---|
| Owner | Full access including billing and ownership transfer. One owner per organization. |
| Admin | Full access except ownership transfer. Can invite users, manage connectors, approve actions. |
| User | Standard access. Can view dashboards and insights, and configure personal notification preferences. |
Inviting users
Section titled “Inviting users”Admins and owners can invite users by email:
- Go to Settings > Access.
- Click Invite User.
- Enter the invitee’s email address.
- Select a role (Admin or User).
- Click Send Invitation.
What happens next
Section titled “What happens next”- The invitee receives an email with a link to accept the invitation.
- The invitation is valid for 7 days. After that, it expires and a new one must be sent.
- When the invitee clicks the link, they create their account and are logged in automatically.
- Once accepted, they appear in the user list with their assigned role.
Seat limits
Section titled “Seat limits”Your plan tier determines how many users you can have. LakeSentry checks the seat limit both when creating an invitation and when accepting it. If your organization reaches the limit:
- You cannot create new invitations until a seat is freed.
- Pending invitations that would exceed the limit cannot be accepted.
Pending invitations
Section titled “Pending invitations”View and manage pending invitations on the Access tab of the Settings page:
- Revoke — Cancel a pending invitation. The invite link stops working immediately.
Expired invitations are automatically filtered out and no longer appear in the list.
Managing users
Section titled “Managing users”Setting a user’s password
Section titled “Setting a user’s password”Admins and owners can set or reset a password for any user:
- On the Access tab in Settings, find the user in the table.
- Click the Password button in the user’s row.
- Enter the new password and click Set password.
This is useful when a user is locked out or needs a password reset.
Removing a user
Section titled “Removing a user”Admins and owners can remove users:
- On the Access tab in Settings, find the user in the table.
- Click the delete icon (trash) in the user’s row.
- Confirm the deletion in the dialog.
Removing a user:
- Immediately invalidates all their active sessions.
- Removes their access to LakeSentry.
- Does not delete historical data or audit log entries associated with them.
Transferring ownership
Section titled “Transferring ownership”The owner role is unique — there’s exactly one per organization. To transfer ownership:
- Go to Settings > Access.
- In the Ownership Transfer card (only visible to the current owner), select the target admin from the dropdown.
- Click Transfer Ownership.
- Confirm the transfer in the dialog.
After transfer:
- The selected admin becomes the new Owner.
- The previous owner is demoted to Admin.
- An entry is recorded in the audit log.
Authentication
Section titled “Authentication”LakeSentry supports two authentication methods:
| Method | How it works |
|---|---|
| Magic link | User enters their email, receives a one-time login link via email. No password needed. |
| Password | Traditional email and password login. |
Users can use either method regardless of how their account was created. Magic link is the default — password-based login is available for users who prefer it or whose email systems have delays with magic links.
Session management
Section titled “Session management”- Sessions expire after 7 days.
- Users can have multiple active sessions (e.g., on different devices).
- Removing a user invalidates all their sessions immediately.
Audit trail
Section titled “Audit trail”All user management actions are logged in the audit log:
| Action | What’s recorded |
|---|---|
| Invitation created | Inviter email, invitee email, assigned role |
| Invitation accepted | Invitee email, assigned role |
| Invitation revoked | Revoking admin, invitation email |
| User removed | Admin who removed them, removed user’s email |
| Ownership transferred | Previous owner, new owner |
Next steps
Section titled “Next steps”- Roles & Permissions — Detailed permission matrix for each role
- Webhooks & Notifications — Configure alerts for your team
- Settings — Organization-level configuration