This article explains how to give someone access to the Grip dashboard, what each access level means, and how multi-factor authentication (MFA) works. It is designed to help you manage admin roles securely and easily.
In This Article
- Admin Access Roles
- How to add a dashboard admin
- Changing an admin’s access level
- Adding multi factor authentication (MFA)
- Using multi factor authentication (MFA)
- FAQs
Admin Access Roles
Grip offers different access levels so you can control what each user can do in the dashboard. This helps protect sensitive data and makes sure users only see tools they need.
| Role | Access Level |
|---|---|
| Super Admin | Reserved for Grip internal use only. |
| Implementation Partner Admin | Highest-level role available to non-Grip staff. Intended for official Grip partners and resellers who require full dashboard access, including costed features such as badge scanning and native integrations. - Full API access, including the Test User toggle, Meetings Settings, and App Config & Special Actions. - Exclusive to authorized Grip Partners. |
| App Admin |
Full dashboard access and read-only access to their own API Access Token. - Can use the Test User functionality. |
| Event Expert+ |
Highest-level role limited to individual events. - Can use the Test User functionality. |
| Event Expert | Event-level access within assigned events. Similar to Event Expert+ but without permissions for certain settings like the Test User toggle. |
| Registration Provider |
Access to Profile Dashboard section only. Read-only access to their own API Access Token. Limited data management API access (GET, POST, PATCH, DELETE). lower user access role, designed for third-party users (e.g. people creating integrations). Access only to the API Tokens and API documentations pages. |
Non-Dashboard roles
These roles are API-only and do not provide access to the dashboard interface. They are used for integration purposes only.
| Role | Purpose |
|---|---|
| Analytics User | For API access only. No dashboard access. |
| Notification Provider | Used to generate API keys for OneSignal integrations. |
| Meeting Provider | Used to generate API keys for MustMeet integrations. |
| Grip Registration via IDLoom | Enables API key creation for IDLoom registration integrations. |
The following roles are no longer in use or not recommended for assigning. They are either non-functional, redundant, or unclear in purpose:
-
App Master
-
Matchmaking Client
-
Event Owner
-
Plugin Owner
-
Analytics User
Note: Avoid using these roles unless explicitly instructed by the Grip team.
How to add a dashboard admin
Follow these steps to give someone admin access:
- Go to the "Admin Access" section in the dashboard.
- Click "Add User".
- Enter the email address of the user you want to grant access to.
- Select an access level from the available options.
- Assign event access (if applicable).
- Click 'Invite user' to confirm.
Important: The invitation link will expire after 48 hours. If the user doesn’t accept in time, you’ll need to resend the invite.
Changing an admin’s access level
To update an existing admin’s permissions:
- Go to "Admin Access" in the dashboard.
- Find the user you want to modify.
- Click "Actions" on the right-hand side, then select "Edit Access."
- Adjust their access level as needed.
- Click Save to confirm.
Important: You can only edit another admin’s access if:
-
You are a Super Admin, or
-
Your own role is higher than the person you are trying to edit
Adding multi factor authentication (MFA)
Grip offers Multi-Factor Authentication (MFA) to enhance security. When enabled, users must enter a verification code sent to their email each time they log in.
How to Enable MFA for an Admin
- Go to the "Admin Access" section.
- Find the admin you want to enable MFA for.
- Click "Actions" on the right-hand side, then select "Enable MFA".
Note: Multi-Factor Authentication (MFA) is now mandatory for all users.
Whenever a new user is added to the Dashboard (regardless of their role) MFA will be automatically enforced as a security measure. This setting is no longer optional.
Using multi factor authentication (MFA)
MFA adds a second step to the login process. After entering a password, users must enter a code sent to their email. This keeps your dashboard safer from unauthorized access.
To enable MFA for a user:
-
Go to the Admin Access section.
-
Find the user.
-
Click Actions > Enable MFA.
Important notes:
- A new code is generated each time the user logs in.
- Old codes cannot be reused.
-
MFA is now always on for new users. It is automatically enforced when they are invited.
FAQs
Q: I’m getting an error when accepting an invite.
A: Invites expire after 48 hours. Go to Admin Access > Actions > Resend Invite.
Q: I haven’t received the dashboard or MFA email. What should I do?
A: Check the user’s:
-
-
Spam or junk folder
-
Email spelling
-
If still missing:
-
-
Resend the invite
-
If that fails, delete the user and send a new invite
-
Q: I can’t edit another admin’s access or resend their invite.
A: You must be a Super Admin or have a higher role than the person you want to edit.
Q: I’m being asked for an MFA code, but I never enabled MFA.
A: Another admin may have enabled MFA. Ask an App Admin or higher to disable and re-enable MFA.
Q: I’m stuck in a login loop or can’t access the dashboard.
A: Try these steps:
-
-
Log out of all other Grip sessions
-
Clear your browser’s cookies and cache
-
Use an incognito/private browser window
-
Ask your admin to resend your invite if needed
-
Q: Why is the “Admin Access” section missing for me?
A: Only users with higher-level roles (App Admin or above) can see this section. Ask your admin to update your access.
Q: Resending an invite doesn’t work, what now?
A: Delete the user from the dashboard and send a brand new invite. This usually fixes hidden errors.