<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=2581828&amp;fmt=gif">
Contact me
Talk to us
integration-file-uploads

File Uploads
integration-ai-connectors

AI Connectors
integration-it-ot-connectors

IT / OT Connectors
integration-custom-integrations

Custom Integrations
integration-api-endpoints

API Endpoints
integration-iot-devices-protocols

IoT Devices + Protocols
integration-forms-manual-input

Forms + Manual Input
integration-streaming-data

Streaming Data
data-real-time-data-processing

Real-Time Data Processing
data-unified-data-tables

Unified Data Tables
data-data-management

Data Management
data-data-transformation

Data Transformation
data-file-parsing

File Parsing
data-calculation-aggregation

Calculation + Aggregation
data-ai-models-training

AI Models + Training
data-data-storage

Data Storage
execution-workflows-triggers

Workflows + Triggers
execution-control-automation

Control + Automation
execution-predictive-ai-machine-learning

Predictive AI / ML
execution-gen-ai-ai-agents

Gen AI + AI Agents
execution-approvals-exceptions

Approvals + Exceptions
presentation-dashboards-visualizations

Dashboards + Visualizations
presentation-widgets-ui-components

Widgets + UI Components
presentation-notifications-alerts

Notifications + Alerts
presentation-dynamic-reports

Dynamic Reports
presentation-custom-form-builder

Custom Form Builder
presentation-screen-flows-hierarchies

Screen Flows + Hierarchies
presentation-html-javascript

HTML + JavaScript
presentation-qr-code-generator

QR Code Generator
presentation-conversational-analytics

Conversational Analytics
security-hosting-management

Hosting + Management
security-white-labelling

White Labelling
security-deployment-architecture

Deployment + Architecture
security-users-roles-access

Users, Roles + Access
security-usage-metrics

Usage + Metrics
security-enterprise-security

Enterprise Security
security-governance-controls

Governance + Controls
security-audit-trails-logs

Audit Trails + Logs
We deliver custom solutions that fit your business and industry better, fast + affordably.
Platform
Rayven-fav-icon

Platform Overview

A unified platform to integrate, automate, and build custom AI + apps.
integration-layer

Integration Layer

Connects IT, OT, SaaS, IoT, APIs, files + more into one pipeline.
integration-file-uploads

File Uploads
integration-ai-connectors

AI Connectors
integration-it-ot-connectors

IT / OT Connectors
integration-custom-integrations

Custom Integrations
integration-api-endpoints

API Endpoints
integration-iot-devices-protocols

IoT Devices + Protocols
integration-forms-manual-input

Forms + Manual Input
integration-streaming-data

Streaming Data
data-layer

Data Layer

Transforms + contextualises your data into an AI-ready source of truth.
data-real-time-data-processing

Real-Time Data Processing
data-unified-data-tables

Unified Data Tables
data-data-management

Data Management
data-data-transformation

Data Transformation
data-file-parsing

File Parsing
data-calculation-aggregation

Calculation + Aggregation
data-ai-models-training

AI Models + Training
data-data-storage

Data Storage
execution-layer

Execution Layer

Automate workflows, trigger actions using real-time data + AI.
execution-workflows-triggers

Workflows + Triggers
execution-control-automation

Control + Automation
execution-predictive-ai-machine-learning

Predictive AI / ML
execution-gen-ai-ai-agents

Gen AI + AI Agents
execution-approvals-exceptions

Approvals + Exceptions
presentation-layer

Presentation / UI Layer

Turns your data into real-time dashboards, reports + custom UIs.
presentation-dashboards-visualizations

Dashboards + Visualizations
presentation-widgets-ui-components

Widgets + UI Components
presentation-notifications-alerts

Notifications + Alerts
presentation-dynamic-reports

Dynamic Reports
presentation-custom-form-builder

Custom Form Builder
presentation-screen-flows-hierarchies

Screen Flows + Hierarchies
presentation-html-javascript

HTML + JavaScript
presentation-qr-code-generator

QR Code Generator
presentation-conversational-analytics

Conversational Analytics
security-layer

Security, Governance + Hosting

Protects the platform with access control, encryption + audit logging.
security-hosting-management

Hosting + Management
security-white-labelling

White Labelling
security-deployment-architecture

Deployment + Architecture
security-users-roles-access

Users, Roles + Access
security-usage-metrics

Usage + Metrics
security-enterprise-security

Enterprise Security
security-governance-controls

Governance + Controls
security-audit-trails-logs

Audit Trails + Logs
We deliver custom solutions that fit your business and industry better, fast + affordably.
What We Build
4-Build-Solution-orange-bev

Custom Software + Applications

We build custom software + applications on top of your data and systems.
CustomAI

Custom AI + Agents

Train and deploy AI trained on your files, systems + data.
5-Context-Solution-Orange-bev

IoT Solutions

IoT platform for building custom IoT solutions that work with any device.
Data-Platform

Unified Data Platforms

Complete platforms, pipelines, hybrid storage + real-time orchestration.
1-Capture-Solution-orange

Data Collection Tools

Digitise + streamline data collection at the source.
3-Act-Solution-Orange-bev

Automations

Design and run real-time automation across systems, data + workflows.
2-Unify-Solution-Orange-bev

Integrations

Integrate and move data across all your systems, assets + files.
We deliver custom solutions that fit your business and industry better, fast + affordably.
Who We Build For

Partners

Become Partner                    
We deliver custom solutions that fit your business and industry better, fast + affordably.
Partner Directory
We deliver custom solutions that fit your business and industry better, fast + affordably.

Sectors

Accountancy
ACCOUNTANCY&nbsp;SERVICES
Agribusiness
AGRIBUSINESS
Construction
CONSTRUCTION
Education
EDUCATION
Energy + Utilities
ENERGY + UTILITIES
Engineering
ENGINEERING
Environmental Services
ENVIRONMENTAL SERVICES
Facility + Site Management                 
FACILITY + SITE&nbsp;MANAGEMENT
Financial Services
FINANCIAL SERVICES
Government + Public Sector
GOVERNMENT + PUBLIC SECTOR
Healthcare
HEALTHCARE
Hospitality
HOSPITALITY

 

Infrastructure Management
INFRASTRUCTURE
Insurance
INSURANCE
Manufacturing
MANUFACTURING
Mining + Quarrying
MINING + QUARRYING
Oil + Gas
<p>OIL + GAS</p>
Ports + Terminals
SUPPLY CHAIN&nbsp;+ LOGISTICS
Real Estate + Property Services
REAL ESTATE + PROPERTY
Retail
RETAIL
Smart Communities + Local Government    
SMART COMMUNITIES
Supply Chain + Logistics
SUPPLY CHAIN&nbsp;+ LOGISTICS
Water + Wastewater
WATER + WASTEWATER
   → All Industries
Rayven is flexible. Our technology's built for industry + its many use cases.

Job Roles

Digital Teams
Unite Ops data, deliver real-time intelligence + get custom apps with AI capabilities.
CIOs + IT Teams
Get custom operational systems + data solutions without the IT headache.
Ops Teams
Reduce manual work, spot issues earlier + add real-time intelligence, anywhere.
Data Teams
Ingest, transform + orchestrate real-time data pipelines, dashboards, apps - anything!
Senior Management
Improve real-time transparency, decision-making + empower your people to improve.
Services

 

Services Overview          
Talk to us to find out how we can help you fast + affordably.
Solution Design
Talk to us to find out how we can help you fast + affordably.
Support
Talk to us to find out how we can help you fast + affordably.
Training
Talk to us to find out how we can help you fast + affordably.

Enterprise

Enterprise Services Overview
Talk to us to find out how we can help you fast + affordably.
Fast Start Programme
Talk to us to find out how we can help you fast + affordably.
Service Packs
Talk to us to find out how we can help you fast + affordably.
Resources

Library

ALL
Talk to us to find out how we can help you fast + affordably.
Articles + Blogs
Talk to us to find out how we can help you fast + affordably.
Brochures + eBooks
Talk to us to find out how we can help you fast + affordably.
Case Studies
Talk to us to find out how we can help you fast + affordably.
Readiness Assessment          
Talk to us to find out how we can help you fast + affordably.
Webinars
Talk to us to find out how we can help you fast + affordably.

Our Company

About Rayven
Learn more about Rayven, our mission + history.
Contact Us
Talk to us to find out how we can help you fast + affordably.
Knowledge Base
Talk to us to find out how we can help you fast + affordably.
Media Coverage
See where Rayven's been in the media recently.
Contact me
Talk to us

Platform > Security, Governance + Hosting Layer > Users, Roles + Access

Users, roles + access.

Control who accesses what, across every layer of the platform - role-based permissions, Label-based data scoping, SSO + MFA all in one place.

Interface-Page-500

CAPABILITY OVERVIEW

The right access for every person, every dataset.

Rayven's access control model combines role-based permissions with Label-based data scoping to provide granular, scalable access governance without building separate applications per audience.

Roles control what users can do. Labels control what data they can see. Together, they enable a single application to serve operators, managers, clients + partners with precisely the right level of access - without manual data filtering or separate view configurations per user group.

SSO, MFA + enterprise IdP integrations ensure access governance integrates with your existing identity infrastructure.

Authentication methods supported:

  • Username + password (platform-managed)

  • SSO via OAuth2 / OIDC

  • SSO via SAML (enterprise IdPs)

  • Azure Active Directory / Entra ID

  • Multi-factor authentication (MFA)

  • SCIM provisioning (where configured)

User management

KEY CAPABILITIES

What Users, Roles + Access gives you.

Role-based access control (RBAC)

Define roles that control what users can see + do within the platform. Standard roles include Admin, Builder + Viewer, with configurable fine-grained permissions per workspace. Role assignments determine which capabilities, configuration options + data operations each user can perform.

Label-based data access

Complement role-based permissions with Label-based data scoping. A user's Label assignment controls which data records they can see across dashboards, workflows + API endpoints. Site managers see their site. Clients see their records. Managers see aggregated views. All from the same application.

SSO + enterprise IdP integration

Support for OAuth2/OIDC, SAML + enterprise identity providers including Azure Active Directory/Entra ID. Users authenticate through your existing identity infrastructure. No separate Rayven credentials required for organisations with centralised identity management.

Multi-factor authentication (MFA)

MFA is available across all authentication methods. Enforce MFA for all users or specific roles within a workspace. Adds an additional verification step to the login process, protecting access to operational data + platform configuration.

Workspace-level isolation

User permissions, role assignments + data scoping operate at the workspace level. Different workspaces can have different user sets, permission configurations + data scopes within the same platform instance - supporting multi-team or multi-client isolation.

SCIM provisioning + user lifecycle

SCIM provisioning (where configured) enables automated user account management via your existing identity provider. User onboarding, role assignments + deprovisioning are managed centrally through your IdP rather than manually within the platform.

HOW IT CONNECTS: EXPLAINER

Where Users, Roles + Access fit in the Rayven Platform stack.

Users, Roles + Access is the permission layer governing every interaction with the platform across all other layers.

  • Role assignments determine which Integration Layer connectors, Data Layer tables + Execution Layer workflows each user can view or modify.

  • Label-based data access controls which records each user sees in Presentation Layer dashboards, reports + interfaces.

  • SSO configurations integrate with your organisation's existing identity infrastructure for unified authentication.

  • All user actions - login events, configuration changes, workflow executions + data access - are captured in Audit Trails + Logs.

USE CASES

How UsersRoles + Access gets used.

Enterprise configuring role-based access across a large operations team

An infrastructure operator configures role-based access for 500+ platform users. Operations staff have Viewer access to dashboards + alert controls. Engineers have Builder access to workflow configuration within their assigned workspace. IT administrators have Admin access platform-wide. SSO via Azure AD enables single sign-on for all users without separate Rayven credentials.

AAMG-Solution-WebP

Partner managing client access within a multi-tenant deployment

An MSP deploys a white-label platform serving 30 clients. Each client is assigned a Label scoping their data access. Each client has a designated admin managing their own team's users. No client can see another client's data, configuration or user list. The MSP's admin team has platform-wide access.

App-Page-500

Regulated industry enforcing MFA + audit-ready access controls

A financial services firm enforces MFA for all users, SSO via their corporate identity provider + role-based permissions aligned with internal data access policies. All access events are logged in Audit Trails + Logs for compliance reporting. SCIM provisioning manages onboarding + offboarding through the firm's existing HR system.

Workflow-Chain-Preferred WebP

Rayven Users, Roles + Access FAQs:

Standard roles include Admin (full platform access), Builder (workflow + configuration access) + Viewer (read-only access to dashboards + interfaces). Fine-grained permissions can be configured per workspace within these roles to tailor access to specific capabilities.

Role-based access controls what actions a user can perform (view, configure, administer). Label-based access controls which data records a user can see. Both work independently and together - a Viewer with a specific Label can only view data matching their Label assignment.

Yes. SSO is supported via OAuth2/OIDC, SAML + enterprise identity providers including Azure Active Directory/Entra ID. Users authenticate through your existing identity infrastructure. Separate Rayven credentials are not required when SSO is configured.

Yes. MFA is available across all authentication methods. It can be enforced for all users, specific roles or specific workspaces based on your security policy requirements.

Yes. Label-based data access scopes each user's view to the data matching their Label assignment. Role-based permissions control which elements they can interact with. The same application layout serves different audiences with automated data + permission scoping.

SCIM provisioning connects Rayven's user management to your identity provider. When configured, user accounts are created, updated + deprovisioned automatically based on IdP changes. Contact us to discuss SCIM configuration for your specific identity provider.

Yes. A user can have Builder access in one workspace and Viewer access in another, or no access to specific workspaces at all. Workspace-level isolation applies independently per workspace within the same deployment.

User accounts can be manually deactivated within the platform, removing access immediately. With SCIM provisioning configured, deprovisioning in your IdP triggers automatic deactivation in Rayven - no manual IT intervention required.

User count limits depend on your subscription tier. Contact us to confirm the applicable user count for your deployment.

Yes. All login events, permission changes + user actions are captured in Audit Trails + Logs with user identity + timestamp. Access event logs are available for compliance reporting + security investigations.

Supply-Chain-Logistics-Leader

Also in Security, Governance + Hosting:

White Labelling

Custom domain, branding, colour palette + multi-tenant configuration for client-facing applications.

Deployment + Architecture

SaaS, private cloud, on-premise + Edge deployment options with identical functionality across all models.

Users, Roles + Access

Role-based access control, SSO, MFA + workspace-level permission management across all users.

Usage + Metrics

Real-time visibility of platform usage, workflow performance, data volumes + resource consumption.

Enterprise Security

Encryption at rest + in transit, network segmentation, secrets management + compliance-ready governance.

Governance + Controls

Data retention policies, deployment controls, rate limits + environment isolation across the platform.

Audit Trails + Logs

Complete, immutable records of every user action, data change + workflow execution across the platform.

Want to discuss your hosting requirements?

Tell us where your data needs to live and we will walk you through the right deployment option for your environment.

Join the Shift

Discover the easy way to do something new.

Book a demo with our team and we'll show you exactly how Rayven can work for your environment.

Book a Demo
See the platform in action with one of our team. We'll tailor it to your environment.
Talk to us
Not ready for a demo? Send us a message and we'll get back with tailored advice.