You can configure Humio to run either with or without user authentication. If user authentication is disabled, then everyone with access to UI or API can access everything!
When you run Humio with authentication enabled, each repository has its own set of users. Humio identifies users by their email address. It validates each email address using an OAuth identity provider - either Google, Github, or Bitbucket. Humio can also check usernames and password using your local LDAP service.
There are three levels of users: ‘normal’, ‘administrator’, and ‘root’:
You can create your initial users with ‘Root’ access through the HTTP API. See how to gain root access using a local access token.
You can manage Users and their rights using the ‘Repository’ web page in Humio. Root users (apart from the initial one) can get added through the ‘Administration’ page when you are logged in as a root user.