> For the complete documentation index, see [llms.txt](https://docs.e6data.com/product-documentation/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.e6data.com/product-documentation/access-control/roles/policies.md).

# Policies

This document lists all the policies available on e6data and their associated permissions:

## **Connectivity**

<table><thead><tr><th width="231">Policy Name</th><th width="139.33333333333331">Permissions</th><th>Description</th></tr></thead><tbody><tr><td>ConnectivityFullAccess</td><td>ep:Create</td><td>Permission to create an endpoint</td></tr><tr><td></td><td>ep:Update</td><td>Permission to update an endpoint</td></tr><tr><td></td><td>ep:Delete</td><td>Permission to delete an endpoint</td></tr><tr><td></td><td>ep:Get</td><td>Permission to view information about Endpoints.</td></tr><tr><td></td><td>ep:List</td><td>Permission to view the list of assigned Endpoints.</td></tr><tr><td></td><td>ips:Create</td><td>Permission to create an IP Set</td></tr><tr><td></td><td>ips:Update</td><td>Permission to update an IP Set</td></tr><tr><td></td><td>ips:Delete</td><td>Permission to delete an IP Set</td></tr><tr><td></td><td>ips:Get</td><td>Permission to view information about IP Sets.</td></tr><tr><td></td><td>ips:List</td><td>Permission to view the list of assigned IP Sets.</td></tr><tr><td>ConnectivityViewAccess</td><td>ep:Get</td><td>Permission to view information about Endpoints.</td></tr><tr><td></td><td>ep:List</td><td>Permission to view the list of assigned Endpoints.</td></tr><tr><td></td><td>ips:Get</td><td>Permission to view information about IP Sets.</td></tr><tr><td></td><td>ips:List</td><td>Permission to view the list of assigned IP Sets.</td></tr></tbody></table>

## **Query History**

<table><thead><tr><th width="226">Policy Name</th><th width="183.33333333333331">Permissions</th><th>Description</th></tr></thead><tbody><tr><td>QueryHistoryFullAccess</td><td>qh:DownloadHistory</td><td>Permission to download query history.</td></tr><tr><td></td><td>qh:ViewAllHistory</td><td>Permission to view the query history of all the users.</td></tr></tbody></table>

## **Query Editor**

<table><thead><tr><th width="223">Policy Name</th><th width="128.33333333333331">Permissions</th><th>Description</th></tr></thead><tbody><tr><td>QueryEditorFullAccess</td><td>qe:Enable</td><td>Permission to access the Query Editor and run queries.</td></tr><tr><td></td><td>qe:Download</td><td>Permission to download query results</td></tr><tr><td>QueryEditorManagerAccess</td><td>qe:Enable</td><td>Permission to access the Query Editor and run queries.</td></tr></tbody></table>

## Clusters

<table><thead><tr><th width="225">Policy Name</th><th width="135.33333333333331">Permissions</th><th>Description</th></tr></thead><tbody><tr><td>ClusterFullAccess</td><td>cl:*</td><td>Includes all the permissions listed below.</td></tr><tr><td>ClusterManagerAccess</td><td>cl:List</td><td>Permission to view the list of assigned clusters.</td></tr><tr><td></td><td>cl:Get</td><td>Permission to view information about assigned clusters.</td></tr><tr><td></td><td>cl:Update</td><td>Permission to update assigned clusters.</td></tr><tr><td></td><td>cl:Associate</td><td>Permission to attach an assigned catalog to an assigned cluster.</td></tr><tr><td></td><td>cl:Disassociate</td><td>Permission to detach an assigned catalog that is already attached to a cluster.</td></tr><tr><td></td><td>cl:Suspend</td><td>Permission to suspend assigned clusters.</td></tr><tr><td></td><td>cl:Resume</td><td>Permission to resume assigned clusters.</td></tr><tr><td></td><td>ct:List</td><td>Permission to view the list of assigned catalogs.</td></tr><tr><td>ClusterRunAccess</td><td>cl:List</td><td>Permission to view the list of assigned clusters.</td></tr><tr><td></td><td>cl:Get</td><td>Permission to view information about assigned clusters.</td></tr><tr><td></td><td>cl:Suspend</td><td>Permission to suspend assigned clusters.</td></tr><tr><td></td><td>cl:Resume</td><td>Permission to resume assigned clusters.</td></tr><tr><td>ClusterReadAccess</td><td>cl:List</td><td>Permission to view the list of assigned clusters.</td></tr><tr><td></td><td>cl:Get</td><td>Permission to view information about assigned clusters.</td></tr></tbody></table>

## Catalogs

<table><thead><tr><th width="236">Policy Name</th><th width="131.33333333333331">Permissions</th><th>Description</th></tr></thead><tbody><tr><td>CatalogFullAccess</td><td>ct:*</td><td>Includes all the permissions listed below.</td></tr><tr><td>CatalogManagerAccess</td><td>ct:Get</td><td>Permission to view information about catalogs.</td></tr><tr><td></td><td>ct:List</td><td>Permission to view the list of assigned catalogs.</td></tr><tr><td></td><td>ct:Update</td><td>Permission to update assigned catalogs.</td></tr><tr><td></td><td>ct:Refresh</td><td>Permission to refresh assigned catalogs.</td></tr><tr><td>CatalogReadAccess</td><td>ct:Get</td><td>Permission to view information about catalogs.</td></tr><tr><td></td><td>ct:List</td><td>Permission to view the list of assigned catalogs.</td></tr></tbody></table>

## Workspaces

<table><thead><tr><th width="254.33333333333331">Policy Name</th><th width="115">Permissions</th><th>Description</th></tr></thead><tbody><tr><td>WorkspaceFullAccess</td><td>ws:*</td><td>Includes all the permissions listed below.</td></tr><tr><td>WorkspaceManagerAccess</td><td>ws:Update</td><td>Permission to update an assigned workspace.</td></tr><tr><td></td><td>ws:Get</td><td>Permission to to view information about assigned workspaces.</td></tr><tr><td></td><td>ws:List</td><td>Permission to view the list of assigned workspaces.</td></tr></tbody></table>

## Identity and Access Management (IAM)

<table><thead><tr><th width="199.33333333333331">Policy Name</th><th width="183">Permissions</th><th>Description</th></tr></thead><tbody><tr><td>IAMFullAccess</td><td>iam:*</td><td>Includes all the permissions listed below.</td></tr><tr><td>IAMReadAccess</td><td>iam:ListUsers</td><td>Permission to view the list of existing users.</td></tr><tr><td></td><td>iam:ListGroups</td><td>Permission to view the list of existing groups.</td></tr><tr><td></td><td>iam:ListPolicies</td><td>Permission to view all existing policies.</td></tr><tr><td></td><td>iam:ListOperations</td><td>Permission to view basic operations.</td></tr><tr><td>IAMManagerAccess</td><td>iam:UpdateUsers</td><td>Permission to update the privileges of any existing user.</td></tr><tr><td></td><td>iam:UpdateGroups</td><td>Permission to update the privileges of any existing group.</td></tr></tbody></table>


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://docs.e6data.com/product-documentation/access-control/roles/policies.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.