Manage Your Organization
Manage workspace access, roles, and endpoint visibility across your organization using Surface Console.
Settings
The Settings page lets you manage workspace access and view your organization's configuration. It has two tabs: Members & Roles and Organization.
Navigate to Settings at: console.superalign.ai/settings
Members & Roles
The Members & Roles tab gives you a full view of who has access to your Surface workspace and what permissions they hold.
Role Summary
At the top of the page, three cards show how many users are assigned to each role:
| Role | Description |
|---|---|
| Admin | Can manage all settings and users |
| Member | Standard access for reviewing assets and endpoints |
| Viewer | View-only access |
These cards give a quick picture of how access is distributed across your organization.
Members Table
Below the role summary, the Members table lists every user with access to the workspace. Each row includes:
| Column | Description |
|---|---|
| Member | The user's name |
| The user's organization email address | |
| Role | The role currently assigned to the user |
| Last Active | The most recent time the user accessed the platform |
Changing a User's Role
Admins can update any user's role directly from the Members table. To change a role, click the role badge in the Role column next to the user. A dropdown will appear with the available options: Admin, Member, and Viewer. The change takes effect immediately.
Organization
The Organization tab displays your workspace identity and system metadata.
Organization Identity
| Field | Description |
|---|---|
| Organization Name | The display name of your organization as it appears throughout the console |
| Organization Slug | A unique identifier used in URLs and API calls |
Organization Details
These fields are read-only and maintained automatically by Surface:
| Field | Description |
|---|---|
| Status | The current status of your organization workspace (e.g. Active) |
| Created | The date and time the workspace was created |
| Organization ID | A unique system identifier for your organization, useful when working with support or integrations |
Endpoints
Navigate to: console.superalign.ai/endpoints
The Endpoints page lists every device where the Surface Scanner is installed and reporting telemetry.
Endpoints Table
Each row represents a single device. The columns are:
| Column | Description |
|---|---|
| Hostname | The device name and associated user email |
| Status | Whether the device is currently Active or stale |
| Assets Discovered | The total number of AI assets detected on the device |
| Asset Types | Icons showing which categories of AI tools are present |
| Last Seen | How recently the device last reported to Surface |
Active vs. Stale Endpoints
Active — The Surface Scanner is running and reporting telemetry. The Last Seen timestamp will be recent.
Stale — The device has stopped reporting. Common causes include the device being offline, the Scanner being uninstalled, or a network restriction blocking outbound telemetry. Stale devices may still appear in the table but their data may not reflect the current state of the machine. If an endpoint goes stale, verify the Scanner is installed and that outbound HTTPS traffic to *.superalign.ai is not blocked.
Endpoint Detail Page
Click any hostname to open the detail page for that device. The URL follows the format: console.superalign.ai/endpoints/detail
The detail page has two tabs: Overview and Asset Types.
Overview
The Overview tab has two sections:
Exposure — A summary of the device's AI footprint:
- Total assets discovered
- Asset type icons showing the categories present on the device
- A color-coded risk bar breaking down assets across Critical, High, Medium, and Low tiers
Details — Device metadata:
| Field | Description |
|---|---|
| OS | Operating system of the device |
| First Seen | When Surface first detected this endpoint |
| Last Logged User | The most recent user associated with the device |
| Serial | Device serial number, if available |
| Last Seen | When the device last reported telemetry |
Asset Types
The Asset Types tab lists every AI asset discovered on the endpoint, with three columns: Name, Risk Level, and Asset Type. Use this view to audit exactly what is running on a specific machine — useful for device security reviews, incident investigations, and compliance spot checks.