Feature Deep Dive

Access Management

Self-service access requests, granular permissions, and full audit trails — all in one place.

Granular RBAC Space, product & asset-level
Approval Workflows Multi-step & conditional
Audit Trails Every action logged
SSO & SCIM SAML 2.0, OIDC, SCIM

Govern Access Without Slowing Teams Down

Balance security with productivity through self-service access with appropriate oversight.

Granular Role-Based Access Control

Define permissions at every level of the hierarchy — platform-wide roles, space-level access, data product ownership, and individual asset permissions. Each role scopes exactly what a user can see, edit, manage, or administer.

  • Platform roles: Admin, Editor, Viewer, Guest
  • Space-level permissions with inheritance
  • Data product owner vs. consumer access
  • API key scoping with configurable rate limits

Self-Service Access Requests

Users can discover data through the catalog and request access directly. Requests are routed to the appropriate data owner or steward for approval, creating an auditable record of every access decision.

  • One-click access request from the catalog
  • Automatic routing to data owners
  • Approval, rejection, or escalation workflows
  • Time-limited access grants with auto-revocation

SSO & Identity Management

Integrate with your existing identity provider via SAML 2.0 or OIDC. Users authenticate with their corporate credentials — no separate passwords to manage. SCIM support automates user provisioning and de-provisioning as people join or leave the organization.

  • SAML 2.0 and OIDC integration
  • Okta, Azure AD, Google Workspace support
  • SCIM for automated user lifecycle management
  • Group-to-role mapping for automatic permissions

Complete Audit Trail

Every access request, approval, rejection, permission change, and data interaction is logged with full attribution — who did what, when, and why. This log is immutable and available for compliance audits, internal reviews, and incident investigations.

  • Immutable event log with timestamps
  • User attribution for every action
  • Filterable by user, resource, or action type
  • Export for external audit and SIEM integration

Secure Your Data, Empower Your Team

See how Qarion's access management balances governance with productivity.

Request a Demo All Features