Auditor users
- Tier: Premium, Ultimate
- Offering: GitLab Self-Managed, GitLab Dedicated
Auditor users have read-only access to all groups, projects, and other resources in the instance.
Auditor users:
- Have read-only access to all groups and projects.
- Due to a known issue, users must have at least the Reporter role to perform read-only tasks.
- Can have additional permissions to groups and projects based on their assigned role.
- Can create groups, projects, or snippets in their personal namespace.
- Cannot view the Admin area or perform any administration actions.
- Cannot access group or projects settings.
- Cannot view job logs when debug logging is enabled.
- Cannot access areas designed for editing, including the pipeline editor.
Auditor users are sometimes used in situations where:
- An organization needs to test security policy compliance across an entire GitLab instance. An auditor user can do this without being added to every project or given administrator access.
- A specific user needs to view a large number of projects in the GitLab instance. Instead of manually adding the user to every project, you can create an auditor user that can access every project automatically.
An auditor user counts as a billable user and consumes a license seat.
Create an auditor user
To create a new auditor user:
- On the left sidebar, at the bottom, select Admin.
- Select Overview > Users.
- Select New user.
- In the Account section, enter the required account information.
- For User type, select Auditor.
- Select Create user.
You can also create auditor users with:
- SAML groups.
- The users API.