• Contact us
  • Docs
  • Login
Watch a demoFree trial

Control access across projects without slowing teams down

Centralized control for organization owners to grant, scope, and revoke access across every project and environment.

Define who can do what at every level

Define at the right level

Define roles at the organization, project, or environment-type level. Apply them to one project or many.

Scoped by environment type

Production, Staging, and Development can each have their own rules inside the same project. No juggling per-environment permissions by hand.

Managed in one place

Console, CLI, and API. No third-party identity stack to plug in and maintain.

Access controls that match how teams work

Manage access across organizations, projects, and environments. Permissions stay close to how your teams already work.

  • Organization-level user management.
  • Project admin and project viewer roles.
  • Grant environment type roles for production, staging, and development.
  • Team-based access across selected projects.
  • User invitations and permission updates.
  • Access removal at project, team, and organization level.
  • Manage everything through the Console, CLI, or API. No shared credentials needed.

How team and access management works on Upsun

Set project-level roles

Control whether a user can administer a project or only view it. Project admins can manage access, change settings, push code, and execute actions across environments.

Apply environment type roles

Set different permissions for production, staging, and development environments. A developer can contribute in development while having view-only access to production.

Use teams for shared access

Create teams for groups such as developers, QA, agencies, or platform engineers. Add users and projects to a team, then manage shared permissions from one place.

Administer access from the Console or CLI

Use the Console for guided access management or the CLI for repeatable workflows. Update, remove, or review access as teams and projects change.

Compliance by design

A consistent permission model across every project supports SOC 2, ISO 27001, HIPAA, and PCI workflows. Access controls are repeatable and documented.

Onboarding and offboarding in one workflow

Upsun simplifies onboarding and offboarding through a single control plane. No need to manually configure access across systems.

Give every team the right level of access

Start a free trialSchedule a demo
UpsunFormerly Platform.sh
CompanyTrust centerEventsAbout usJobsSustainabilityOpen sourceFAQ
CompareVercel alternativeAmazee alternativeHeroku alternativePantheon alternativeManaged hosting alternativeFly.io alternativeRender alternativeAWS alternativeAcquia alternativeDigitalOcean alternative
ProductOverviewServicesSupportPreview environmentsMulti-cloud and edgeGit-driven automationObservability and profilingSecurity and complianceScaling and performanceBackups and data recoveryTeam and access managementCLI, console, and APIIntegrations and webhooksPricingPricing calculator
Use casesApplication modernizationeCommerce and CMS hostingMulti site managementCompliance and governanceDevOps and platform engineeringAI and automation
IndustriesFinancial servicesGovernmentSaaSManufacturingHigher educationTravel and hospitalityRetailHealthcare
PartnersStrategic implementationBecome an agency partnerPartner portal
ResourcesCase studiesBlogDeveloper centerDocumentationCommunity forumCloud regionsSupportContact us

Join our monthly newsletter

Compliant and validated

ISO/IEC 27001SOC 2 Type 2PCI L1HIPAATX-RAMP
© 2026 Upsun. All rights reserved.
Terms of ServicePrivacyImpressumReport a security issueCookie preferences