DOC-4354 RS: Add new user manager role

rrelledge · rrelledge · commit dec70fd045d2 · 2024-10-23T17:17:28.000-05:00
diff --git a/content/operate/rs/references/rest-api/objects/role.md b/content/operate/rs/references/rest-api/objects/role.md
@@ -17,5 +17,5 @@ An API object that represents a role.
 | uid | integer | Role's unique ID |
 | account_id | integer | SM account ID |
 | action_uid | string | Action UID. If it exists, progress can be tracked by the GET /actions/{uid} API (read-only) |
-| management | 'admin'<br />'db_member'<br />'db_viewer'<br />'cluster_member'<br />'cluster_viewer'<br />'none' | [Management role]({{< relref "/operate/rs/references/rest-api/permissions#roles" >}}) |
+| management | 'admin'<br />'db_member'<br />'db_viewer'<br />'cluster_member'<br />'cluster_viewer'<br />'user_manager'<br />'none' | [Management role]({{< relref "/operate/rs/references/rest-api/permissions#roles" >}}) |
 | name | string | Role's name |
diff --git a/content/operate/rs/references/rest-api/objects/user.md b/content/operate/rs/references/rest-api/objects/user.md
@@ -26,6 +26,6 @@ An API object that represents a Redis Enterprise user.
 | password | string | User's password. If `password_hash_method` is set to `1`, the password should be hashed using SHA-256. The format before hashing is `username:clustername:password`. | 
 | password_hash_method | '1' | Used when password is passed pre-hashed to specify the hashing method |
 | password_issue_date | string | The date in which the password was set (read-only) |
-| role | 'admin'<br />'cluster_member'<br />'cluster_viewer'<br />'db_member'<br /> **'db_viewer'** <br />'none' | User's [role]({{< relref "/operate/rs/references/rest-api/permissions#roles" >}}) |
+| role | 'admin'<br />'cluster_member'<br />'cluster_viewer'<br />'db_member'<br /> **'db_viewer'** <br />'user_manager'<br />'none' | User's [role]({{< relref "/operate/rs/references/rest-api/permissions#roles" >}}) |
 | role_uids | array of integers | UIDs of user's roles for role-based access control |
 | status | 'active'<br />'locked' | User sign-in status (read-only)<br />**active**: able to sign in<br />**locked**: unable to sign in |
diff --git a/content/operate/rs/references/rest-api/permissions.md b/content/operate/rs/references/rest-api/permissions.md
@@ -26,6 +26,7 @@ Available management roles include:
 - **[db_member](#db-member-role)**: Can create or modify databases and view their info.
 - **[cluster_viewer](#cluster-viewer-role)**: Can view cluster and database info.
 - **[cluster_member](#cluster-member-role)**: Can modify the cluster and databases and view their info.
+- **[user_manager](#user-manager-role)**: Can modify users and view their info.
 - **[admin](#admin-role)**: Can view and modify all elements of the cluster.
 
 ## Permissions list for each role
diff --git a/content/operate/rs/security/access-control/create-cluster-roles.md b/content/operate/rs/security/access-control/create-cluster-roles.md
@@ -22,6 +22,7 @@ Redis Enterprise Software includes five predefined roles that determine a user's
 1. **DB Member** - Administer databases
 1. **Cluster Viewer** - Read cluster settings
 1. **Cluster Member** - Administer the cluster
+1. **User Manager** - Administer users
 1. **Admin** - Full cluster access
 1. **None** - For data access only - cannot access the Cluster Manager UI or use the REST API
 
