From 474399794454c77a88b19c1b46d6ed0b977c3853 Mon Sep 17 00:00:00 2001
From: Pedro Maia Costa <550684+pnmcosta@users.noreply.github.com>
Date: Fri, 9 May 2025 15:47:21 +0100
Subject: [PATCH] users: new auditor and network admin role (#315)

---
 .../how-to/add-users-to-your-network.mdx      | 22 ++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/src/pages/how-to/add-users-to-your-network.mdx b/src/pages/how-to/add-users-to-your-network.mdx
index 2e7d7b03..09b87658 100644
--- a/src/pages/how-to/add-users-to-your-network.mdx
+++ b/src/pages/how-to/add-users-to-your-network.mdx
@@ -60,12 +60,31 @@ button.
 See the [Provision Users and Groups From Your Identity Provider](/how-to/idp-sync) section for more details.
 
 ## Manage user roles
-NetBird has three user roles - `Owner`, `Admin`, and `User`. The roles allow you to control the level of access to the management API of your account. 
+NetBird has five user roles - `Owner`, `Admin`, `Network Admin`, `Auditor` and `User`. The roles allow you to control the level of access to the management API of your account. 
 
 - `Owner` role - has full access to the account and can manage all aspects of the account. There can be only one account owner in NetBird. Users with the owner role can delete their organization account. See the [Delete NetBird account](/how-to/delete-account) section for more.
 - `Admin` role - has full access to the account except that administrators can't delete or update the role of the Owner user and delete the organization account.
+- `Network Admin` role - has access to manage network configurations, including access policies, DNS settings, networks, and network routes, but they can only view user and device information and general settings.
+- `Auditor` role - can read all configurations but not modify any of them.
 - `User` role - has limited access to the account, allowing users to view peers they own and others they can connect to. Users can create personal access tokens for programmatic access.
 
+|  | Owner | Admin | Network Admin | User | Auditor |
+| --: | :--: | :--: | :--: | :--: | :--: |
+| Peers | ✅ | ✅ | 📖 | 📖 | 📖 |
+| Setup Keys | ✅ | ✅ | 📖 | ❌ | 📖 |
+| Access Control | ✅ | ✅ | ✅ | ❌ | 📖 |
+| Networks | ✅ | ✅ | ✅ | ❌ | 📖 |
+| Network Routes | ✅ | ✅ | ✅ | ❌ | 📖 |
+| DNS | ✅ | ✅ | ✅ | ❌ | 📖 |
+| Team | ✅ | ✅ | 📖 | ❌ | 📖 |
+| Activity | ✅ | ✅ | 📖 | ❌ | 📖 |
+| Settings | ✅ | ✅ | 📖 | ❌ | 📖 |
+
+| |
+|-:|
+|✅ = Full access \| 📖 = Read only \| ❌ = No access|
+
+
 To manage user roles, proceed to the `Users` tab and click on the user you want to update:
 <p>
   <img src="/docs-static/img/how-to-guides/user-tab-list.png" alt="high-level-dia" className="imagewrapper-big"/>
@@ -78,6 +97,7 @@ Click the `Save` button to save the changes.
 <Note>
     Only users with the `Owner` role can assign another user as `Owner`; this action will transfer the `Owner` role to another user, making the current user `Admin`.
 </Note>
+
 ## Get started
 <p float="center" >
     <Button name="button" className="button-5" onClick={() => window.open("https://netbird.io/pricing")}>Use NetBird</Button>