User Management

This page covers how to manage users, roles, and security settings for your Teela organization.

Understanding Roles

Teela has three roles, each building on the one below it:

User

The standard role for most of your team. Users can:

Ask questions in natural language and receive SQL-powered answers
Create and save DataClips (saved queries)
Build and use dashboards
Set up Scheduled Reports to receive results by email
Create personal connections for their own Google Sheets, Excel, and CSV files
Rate answers with thumbs-up or thumbs-down to help improve Teela

Client Admin

The organizational administrator role. Client Admins have everything Users can do, plus:

Manage connections: Add, edit, and remove data sources for the organization
Train Teela: Add documentation, SQL examples, and configure the schema
Manage aliases: Create and maintain business term mappings
Manage users: Invite new users, change roles, deactivate accounts
Configure security: Set MFA policies, password requirements, and expiration rules
Review learning candidates: Approve or reject AI-generated training improvements
Access the Knowledge Gap Dashboard: See what terms users need but aren't mapped yet

Owner

The Owner role has all the same permissions as a Client Admin, plus access to billing and subscription management. This is typically the person who set up the Teela account for your organization.

Inviting New Users

To invite someone to your Teela organization:

Navigate to Users in the Admin portal.
Click Invite User.
Enter the person's email address.
Select their role (User or Client Admin).
Click Send Invitation.

The invited person will receive an email with a link to create their account and set a password. The invitation link remains active until they complete registration.

tip

You can invite multiple users at once by entering multiple email addresses separated by commas.

If your organization uses the Slack integration, use the same email address the person uses in Slack. Teela matches users to their Slack identity by email, so a mismatch means they can't use the Slack bot until you update one side to match.

Assigning Connections to Users

Users can only see and query the connections you assign to them. This gives you fine-grained control over who can access what data.

From the User's Profile

Navigate to Users and click on the user's name.
Go to the Connections tab.
Check the connections you want them to access.
Click Save.

From the Connection Page

Navigate to Connections and open the connection.
Go to the Users tab.
Add or remove users.
Click Save.

See Managing Connections for more on connection assignments.

Changing User Roles

To change a user's role:

Navigate to Users and click on the user's name.
In the Role dropdown, select the new role.
Click Save.

Role changes take effect immediately. If you promote a User to Client Admin, they'll see the full Admin portal on their next page load. If you demote a Client Admin to User, they'll lose access to admin features immediately.

Deactivating and Removing Users

Deactivating a User

Deactivating a user locks their account while preserving their data (saved DataClips, dashboards, scheduled reports). To deactivate:

Navigate to Users and click on the user's name.
Click Deactivate.
Confirm the action.

Deactivated users can't log in but can be reactivated later with all their data intact.

Removing a User

Removing a user permanently deletes their account and associated data. This action cannot be undone.

Navigate to Users and click on the user's name.
Click Remove User.
Confirm the action.

caution

Removing a user deletes their saved DataClips, personal connections, and scheduled reports. If they have shared dashboards, those will transfer to the admin who removed them. Consider deactivating instead if you may need their data later.

Security Settings

As a Client Admin, you can configure several security policies for your organization.

Multi-Factor Authentication (MFA)

You can control whether MFA is optional or required for your organization:

Optional: Users can enable MFA on their own but aren't required to.
Mandatory: All users must set up MFA before they can access Teela. Users who haven't configured MFA will be prompted to do so at their next login.

To configure MFA:

Navigate to Settings > Security in the Admin portal.
Under Multi-Factor Authentication, select Optional or Mandatory.
Click Save.

Password Expiration

You can require users to change their passwords on a regular schedule:

Range: 30 to 365 days
Default: 90 days

When a password expires, the user will be prompted to create a new one at their next login.

To configure:

Navigate to Settings > Security.
Under Password Expiration, set the number of days.
Click Save.

Password Complexity Requirements

You can enforce password complexity rules including:

Minimum length
Required character types (uppercase, lowercase, numbers, special characters)
Prevention of password reuse (how many previous passwords to remember)

These settings apply to all users in your organization, including Client Admins.

Monitoring User Activity

The Admin portal provides visibility into how your team is using Teela:

Last active: When each user last logged in or asked a question
Query count: How many questions each user has asked
Connection usage: Which connections each user is querying most

This information helps you understand adoption, identify users who may need help getting started, and spot connections that might need additional training.

Setup: Initial setup including inviting your first users
Managing Connections: Assign connections to users

Understanding Roles​

User​

Client Admin​

Owner​

Inviting New Users​

Assigning Connections to Users​

From the User's Profile​

From the Connection Page​

Changing User Roles​

Deactivating and Removing Users​

Deactivating a User​

Removing a User​

Security Settings​

Multi-Factor Authentication (MFA)​

Password Expiration​

Password Complexity Requirements​

Monitoring User Activity​

Related Pages​