Skip to main content

Auditing user access to resources


Only users with the Instance admin permission can access this feature.

This feature enables instance administrators to verify user access to specific resources, which is especially useful during user access audits.

  • This feature is particularly useful in situations where an individual's role has changed and you need to confirm that they no longer have access to a certain resource without the need to calculate all potential access routes.

  • The feature also proves beneficial when a user, experiencing an issue with a resource, reaches out to an administrator. It enables rapid verification of the user's access level to various resources, assisting in speedy resolution of the problem.


    To utilize this feature, you must know the URL or IRI of the resource.

To check user access to a resource:

  1. Click your Profile icon on the right side of the top navigation. From the menu, select Admin portal.

  2. On the Admin portal, from the top navigation, navigate to the Users page.

  3. On the Users page, in the Search bar, provide the name of the user (for example, john) , username (for example, @johndoe) or email address (for example, to locate the user.

  4. From the Users list, select the user and click the Check access to a resource button.

  5. In the Check resource access window, in the URL or IRI of the resource to check field, provide the URL or IRI of the resource.

    • To obtain the resource URL, go to the resource page and copy the URL from the web browser address bar.

    • To obtain the resource IRI, go to the resource Technical reference page and copy the IRI from the Resource IRI section.

  6. If you provided an IRI, enter the resource owner in the subsequent Owner agentid field, which is the unique identifier of the organization or user to which the resource belongs.

    For example, in the URL:, 8bank is the unique identifier of the owner.

  7. Сlick the Check access button.

    • If the user lacks access, a message is displayed indicating that the user does not have access to the resource.

    • If the user has access, a message is displayed with the access details of the user, including a link to the group granting access.