Go back to the web Sign In

Team Management

Organise your team with role-based access and optional team groupings for product ownership.

Invite a team member

  1. Navigate to SettingsMembers.
  2. Click Invite Member.
  3. Enter the person's email address.
  4. Select a role (Owner, Admin, Member, or Viewer).
  5. Click Send Invitation.

The invitation link expires after 7 days. If the person already has a CRA Evidence account, they're added immediately. Otherwise, they create an account during acceptance.

Tip: View pending invitations on the Members page. Revoke any invitation before it's accepted if circumstances change.

Organisation roles

Role Access level Use case
Owner Full control including billing and deletion Founders, C-level executives
Admin Everything except billing; can invite up to Admin Department leads, senior engineers
Member Create/edit products, upload SBOMs, manage vulnerabilities Engineers, compliance staff
Viewer Read-only access to all data Executives, auditors, consultants

Role capabilities

Capability Owner Admin Member Viewer
View products and SBOMs
Upload SBOMs and documents
Create products and versions
Manage vulnerabilities
Invite members
Change organisation settings
Access billing
Delete organisation

Change a member's role

  1. Go to SettingsMembers.
  2. Find the member in the list.
  3. Select a new role from the dropdown.

Note: Changes take effect immediately. All role changes are recorded in the audit log.

Restrictions

Action Who can do it
Promote to Owner Current Owner only
Demote an Owner Current Owner only
Create additional Owners Current Owner only
Promote to Admin Owner or Admin

Remove a member

  1. Go to SettingsMembers.
  2. Find the member.
  3. Click Remove.
  4. Confirm the action.

The member loses access immediately but keeps their CRA Evidence account.

Warning: You cannot remove the last Owner. Transfer ownership first by promoting another Admin.

Teams (optional)

Teams let you group members and control product access. Useful for larger organisations with separate departments or product lines.

Create a team

  1. Go to SettingsTeams.
  2. Click Create Team.
  3. Enter a name and description.
  4. Optionally add a colour and icon.
  5. Mark as default if new members should join automatically.

Team roles

Team role Capabilities
Lead Full control over team products; manage team membership
Member Create and edit team products
Viewer View team products only

Note: Team roles are independent of organisation roles. An Admin can be a Viewer on a specific team.

Assign products to teams

  1. Open a product's Settings.
  2. Select a team from the Team dropdown.
  3. Save changes.

Team members access the product based on their team role. Products without a team assignment follow organisation-level permissions.

Manage team members

  1. Go to SettingsTeams.
  2. Click a team name.
  3. Use Add Member to add organisation members.
  4. Change roles or remove members as needed.

Domain-based auto-joining

For verified email domains, new users signing up with matching addresses see an option to request access.

  1. User registers with anyone@yourcompany.com.
  2. If yourcompany.com is verified, they can request to join.
  3. Admins receive the request and approve or deny.

This simplifies onboarding for large companies.

Best practices

Practice Why it matters
Start with least privilege Easier to promote than explain a demotion
Use Viewer for stakeholders Executives and auditors need visibility, not edit access
Create teams for ownership Clear responsibility for different product lines
Review membership regularly Remove access when people leave or change roles
Use descriptive team names "Mobile Team" is clearer than "Team 1"
Last updated February 27, 2026
Was this page helpful?
Thanks for your feedback!

Help us improve. What was missing or unclear?