Skip to main content
We recommend importing user lists for any application included in your regular access reviews. There are three common approaches:
  1. One-time import - Import once, then manage all requests and revocations directly in AccessOwl.
  2. Periodic import - Update the user list on a schedule (for example, quarterly before an access review).
  3. Automated sync - Fully automate synchronization between AccessOwl and the application. To request this, contact AccessOwl support. We prioritize integrations based on demand.

How to Import a User List

1

Open the application

Go to the application and click Edit, then click Import.
2

Upload or paste your data

Upload a CSV file or copy-paste table data into the dynamic CSV importer.
3

Review and confirm

Review the imported data and confirm the import.
Ensure that your permission names in AccessOwl match the exact names from the source application. Mismatched naming will cause an error. Capitalization does not matter.

CSV Format

Your CSV always starts with the Email column. Each additional column represents one of your resources. The rows contain the permissions for that resource. Below are examples showing different permission structures.

Single Resource

The simplest case. The application has one resource and each user holds one permission.
EmailRole
john.doe@accessowl.comAdmin
jane.doe@accessowl.comViewer
oscar.owl@accessowl.comEditor

Multiple Resources with Multiple Permissions

When an application has more than one resource, each resource gets its own column. A user may have permissions for some resources but not others.
EmailLicenseSecurity Group
john.doe@accessowl.comEnterpriseIT-Admins;VPN-Users
jane.doe@accessowl.comStandard
oscar.owl@accessowl.comEnterpriseVPN-Users
Here, John has one license permission and two security group memberships. Jane only has a license and no security group assignment.

Parent Resource with Child Resources

Some applications combine a simple resource with a parent-child resource structure. In this example, the application has a Roles resource (simple) and a parent resource with two child resources: Team A and Team B. Each child resource appears as its own column, without the parent name as a prefix.
EmailRolesTeam ATeam B
alex.chen@accessowl.comTeam brand designerUserUser
jordan.smith@accessowl.comTeam brand designerAdminAdmin
priya.patel@accessowl.comTeam brand designerAdminAdmin
In this example, each user has a role and permissions for both Team A and Team B. Because Team A and Team B are child resources under the same parent, their permissions are handled within the same row.

Multiple Separate Resources

When an application has multiple independent resources (not parent-child), each resource gets its own column. In this example, the application has three resources: Organization Role, Project (a list of projects), and Project Role (the role within that project). Because Project and Project Role are separate resources, a user who belongs to multiple projects with different roles needs a separate row for each combination. Duplicate the user’s email for each row.
EmailOrganization RoleProjectProject Role
john.doe@accessowl.comMemberAlphaViewer
jane.doe@accessowl.comAdminBetaAdmin
oscar.owl@accessowl.comAdminAlphaAdmin
oscar.owl@accessowl.comAdminBetaMember
In this example, Oscar is in two projects with different roles. He is an Admin in Project Alpha and a Member in Project Beta. Because Project and Project Role are not linked as parent-child, Oscar needs two rows.
Leave a cell empty if the user does not have any permission for that resource. You do not need to fill every column for every user. When a user holds more than one permission for the same resource, separate them with a semicolon and no spaces, for example Admin;Editor.