# User Access Management

{% hint style="info" %}
**Note on Terminology**\
In this section, the term *model* is used as a generic reference to a deployed workload.\
For customers providing TFHE-based programs or other non-model workloads, *model* should be interpreted as *workload*. User access controls, permissions, and enforcement logic remain the same.
{% endhint %}

### **Token-Based Access**

Access to AI models is granted through **User Access Tokens**, which are:

<mark style="color:blue;">⫸</mark> **Model-Specific**: Each token is tied to a **single AI model** and cannot be used with other models.

<mark style="color:blue;">⫸</mark> **User-Specific**: A token grants access to **one user** only.

***

### User Access Management Flow

1. **Create User Access Tokens**

   AI Providers initiate the creation of tokens, specifying the model the token will access.

   <div data-gb-custom-block data-tag="hint" data-style="info" class="hint hint-info"><p>Tokens can be created without being assigned to a specific model initially. These tokens can later be assigned to a model as needed.</p></div>

2. **Assign Tokens** \
   Assign a token to a specific AI model to enable secure access.

3. **Reassign Tokens**

   Reassignment requires two actions: first, remove the current assignment to make the token unassigned, and then assign it to the new model.

4. **Update Token Attributes**

   AI Providers can update attributes such as token description or status (active/cancelled).

5. **View Token Details**

   AI providers can view a token’s full definition, including its assigned model, status, and expiration date.

***

### Quick Links to How-To Pages

For detailed steps, refer to the following pages:

* \[How-To: [Create User Access Token](/how-to-guides/access-control/how-to-create-user-access-token.md)]
* \[How-To: [Assign a Token to Model](/how-to-guides/access-control/how-to-assign-token-to-workload.md)]
* \[How-To: [Remove Token’s Assignment](/how-to-guides/access-control/how-to-remove-tokens-assignment.md)]
* \[How-To: [Update Token Attributes or Status](/how-to-guides/access-control/how-to-modify-user-access-token-setting.md)]
* \[How-To: [View Tokens Details](/how-to-guides/access-control/how-to-see-list-of-tokens.md)]

***


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://platformdocs.lattica.ai/platform-workflows/user-access-management.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.