Cannot Access Customer Organization for Management - Permission/Role Issue
Hello Zitadel friends,
I'm experiencing an access issue with managing customer organizations in our Zitadel Cloud instance (v3.3.4) and need clarification on the required permissions.
Current Setup:
- Zitadel Cloud instance with 2 administrators
- I have "Organization Owner" role in the instance but am NOT an "Instance Manager" in the customer portal (other admin is Iam Owner)
- Following the SaaS solution guide: we grant customer organizations access to projects within our organization
- Customer organization grant is visible and working in the project
Problem:
I need to manage the customer organization (specifically to add service users), but the customer organization does not appear in my organization dropdown selector. I can only see our main organization, though I can confirm the grant exists and is functional within the project view.
Questions:
- What specific role/permission do I need to manage customer organizations directly?
- Is "Instance Manager" role required for cross-organization management?
- Can this be resolved with my current "Organization Owner" permissions, or do I need the other administrator (currently unavailable) to grant additional permissions?
- Are there alternative approaches to add service users to the customer organization without direct organization access?
My goal is to add service users to the customer organization while the other administrator is unavailable.
Thanks for any pointers!
I'm experiencing an access issue with managing customer organizations in our Zitadel Cloud instance (v3.3.4) and need clarification on the required permissions.
Current Setup:
- Zitadel Cloud instance with 2 administrators
- I have "Organization Owner" role in the instance but am NOT an "Instance Manager" in the customer portal (other admin is Iam Owner)
- Following the SaaS solution guide: we grant customer organizations access to projects within our organization
- Customer organization grant is visible and working in the project
Problem:
I need to manage the customer organization (specifically to add service users), but the customer organization does not appear in my organization dropdown selector. I can only see our main organization, though I can confirm the grant exists and is functional within the project view.
Questions:
- What specific role/permission do I need to manage customer organizations directly?
- Is "Instance Manager" role required for cross-organization management?
- Can this be resolved with my current "Organization Owner" permissions, or do I need the other administrator (currently unavailable) to grant additional permissions?
- Are there alternative approaches to add service users to the customer organization without direct organization access?
My goal is to add service users to the customer organization while the other administrator is unavailable.
Thanks for any pointers!
