Utila vault permissions are based on roles, and each role allows certain operations. Roles are specific to a vault, and a user can have different roles in different vaults.
Owner
The owner is an admin and cannot be removed from the vault.
Owner permissions
The owner has no priority over other admins except for the following permissions:
Owners can create a vault as the first vault user and sole owner.
Owners can create additional vaults, subject to their subscription package quota
As the creator of a vault, they can perform the entire end-to-end process of generating vault keys.
Owners cannot be removed by the Admin Quorum like other users. Instead, they must be manually replaced by Utila's support team after an authorized request from your team triggers the security process.
See admin permissions for additional permissions.
Admin
An Admin has the signer permissions, can expand the network, approve new address book entries, edit all vault settings, add new vault users, and create and download the encrypted key backup.
Admin permissions
Participate in admin quorums for sensitive vault actions
Manage users and API service accounts
Manage transaction and compliance policies
Manage grouping of users, wallets and address book entries
Manage connections to custom EVM RPCs
Manage vault recovery backups
Signer
The signer can initiate transactions, sign and approve transactions, request to create address book entries, and exchange connections.
Signer permissions
Initiate and sign transactions
Manage exchange connections
Manage vault wallets
View and react to vault risks
Perform Crypto <> Fiat transfers
Perform bridge and swap transfers
Connect to dApps
Manage personal backup (for non-API users)Viewer
Viewer
A Viewer has view-only privileges for all workspace activity. They cannot access settings or create transactions.
Viewer permissions
View and export wallets, asset balances, transactions, and address book entries
Access Utila resource center and KB