OffSec has updated admin roles to make permissions clearer and give organizations more flexibility when managing learners, licenses, and reporting.
This article explains what changed, what each admin role can do, and how to add or update admins in your account.
What changed?
OffSec now uses the following admin roles:
| Previous role name | New role name |
| Full Admin / Master Admin | Org Admin |
| Sub-admin / Sub Admin | Team Admin |
We also introduced a new Reporting Admin role for users who need access to dashboards and reports, but should not be able to make administrative changes.
Your existing permissions have not changed. If you previously had Full Admin, Master Admin, or Sub-admin access, your role has been updated to the closest matching new role with equivalent capabilities.
Why did OffSec update admin roles?
We updated admin role names and permissions to make it easier to understand who can manage the account, who can manage day-to-day learner operations, and who can only view reporting data.
The updated role model helps organizations separate responsibilities such as:
- Managing users and licenses
- Purchasing additional licenses
- Viewing dashboards and reports
- Managing other admins
- Providing reporting visibility to stakeholders without giving them edit access
What admin roles are available in OffSec?
OffSec includes three admin roles, plus the standard Learner role.
| Role | What this role can do |
| Org Admin | Manage users, assign licenses, purchase licenses, run reports, manage learning content, and manage other admins. |
| Team Admin | Manage users, assign licenses, run reports, and manage learning content. Team Admins cannot purchase licenses. |
| Reporting Admin | View dashboards and generate reports. Reporting Admins cannot manage users, licenses, content, settings, or other admins. |
| Learner | Access assigned learning content and view their own progress. |
Did my permissions change?
No. Existing admins keep the same capabilities they had before. The main change is the role name displayed in OffSec.
For example:
- If you were previously a Full Admin or Master Admin, you are now an Org Admin.
- If you were previously a Sub-admin or Sub Admin, you are now a Team Admin.
Is there still only one Full Admin?
No. The previous Full Admin role has been replaced by Org Admin.
Org Admins have the highest level of administrative access, including the ability to purchase licenses and manage other admins. Your organization may have one or more Org Admins, depending on how your account is configured.
What can an Org Admin do?
Org Admins have full administrative access for the account or subaccount where they are assigned.
Org Admins can:
- Add, remove, and manage users
- Assign licenses
- Purchase additional licenses
- Manage groups
- Access dashboards and reports
- Manage learning content
- Manage other admins
- Access team achievements, assessments, paths, team management, and Talent Finder where available
What can a Team Admin do?
Team Admins help manage day-to-day learner and training operations.
Team Admins can:
- Add and manage users
- Assign licenses
- Manage groups
- Access dashboards and reports
- Manage learning content
- View team achievements and assessments
- Access team management and Talent Finder where available
Team Admins cannot purchase additional licenses. If a Team Admin needs more licenses, they should contact an Org Admin or their OffSec account team.
What can a Reporting Admin do?
Reporting Admins are intended for users who need visibility into training activity, progress, and outcomes, but should not be able to make account changes.
Reporting Admins can:
- View the Admin Dashboard
- View and generate reports
- View team achievements
- View assessments
- Access Talent Finder where available
Reporting Admins cannot:
- Add or remove users
- Assign or purchase licenses
- Manage groups
- Manage learning content
- Change settings
- Manage other admins
- Send external assessment invitations
Who should be a Reporting Admin?
The Reporting Admin role is a good fit for users who need reporting access only.
Common examples include:
- A manager who needs to track their team’s training progress
- A learning and development partner who needs to generate reports
- A stakeholder who reviews dashboards or training outcomes
- A business leader who needs visibility but should not manage learners or licenses
Can Team Admins create groups and view reports?
Yes. Team Admins can create and manage groups, view dashboards, and run reports where those features are available on the account.
This allows teams to delegate learner management and reporting tasks without granting purchasing permissions.
Can Reporting Admins create groups or manage learners?
No. Reporting Admins can view reporting information, but they cannot manage learners, groups, licenses, content, or settings.
Can Team Admins purchase licenses?
No. Only Org Admins can purchase licenses.
This helps organizations separate operational administration from purchasing authority.
Can I limit an admin’s access to one team or group?
Not at this time. Admin roles currently apply to the entire subaccount where the admin is assigned.
How do I check what type of admin I am?
To view your admin role:
- Go to the Admin Console.
- Open the admin or team management area.
- Find your account in the list of admins.
- Review the role shown in the Role column.
How do I add a new admin?
To add a new admin:
- Go to the Admins page in your account.
- Select Add admin.
- Enter the person’s email address.
- Choose a role: Org Admin, Team Admin, or Reporting Admin.
- Select Continue.
The new admin will receive an email invitation to set up their account.
I received an invitation to become an admin. What should I do?
Follow the instructions in the invitation email.
After selecting Accept Invitation, you will be directed to sign in or create an account in the OffSec Learning Platform.
- If you already have an OffSec account using the invited email address, sign in to accept the invitation.
- If you are new to OffSec, create your account, confirm your email address, complete your profile, and then access the Admin Console.
Your available actions in the Admin Console will depend on the role assigned to you.
How do I change an existing admin’s role?
To update an admin’s role:
- Go to the Admins page.
- Find the admin you want to update.
- Select the three-dot menu on their row.
- Select Manage role.
- Choose the new role.
- Confirm the change.
Role changes take effect immediately.
How do I remove admin access?
Go to the Admins page, find the admin, open the three-dot menu on their row, and select the option to remove or revoke admin access.
The user will no longer have admin permissions after their access is removed.
What should I do if I am the only admin and need to give someone else access?
If you are an Org Admin, you can add another admin from the Admins page.
If you no longer have access to the only Org Admin account, contact OffSec Support for assistance.
What can each admin role access?
| Page or action | Org Admin | Team Admin | Reporting Admin |
| Admin Dashboard | Full access | Full access | View only |
| Purchase licenses | Yes | No | No |
| Assign licenses | Yes | Yes | No |
| Groups | Full access | Full access | No access |
| Team Achievements | Full access | Full access | View only |
| Reports | Full access | Full access | View and generate |
| Assessments | Full access | Full access | View only* |
| Paths | Full access | Full access | No access |
| Team Management | Full access | Full access | No access |
| Talent Finder | Yes | Yes | Yes |
| Manage other admins | Yes | Limited | No |
*Reporting Admins can view assessments but cannot send external invitations.
Still have questions?
You may email us here and our team will be happy to assist you.
Or you may try asking OSCAR - The OffSec Support Chatbot Assistance Resource, a.k.a. OSCAR, it is an AI-powered chatbot here to provide you with quick and efficient support for your general inquiries related to OffSec services and offerings.