home

Developer resources

ReltioProductsDeveloper resourcesRolesApplicationsObjectives
ReltioProductsDeveloper resourcesRolesApplicationsObjectives

Unify and manage your data

Show Contents

thumbnailDeveloper resources

Reltio AgentFlow™ at a glance

AgentFlow capabilities and permissions

Learn more about the different AgentFlow agents, what actions each supports, and the permissions and licenses required to use them.

Attention: This feature is available to limited users through the Reltio Early Access (EA) program. Interested in finding out more about this feature or participating in our EA program? Get details in topic Early Access (EA) features.

AgentFlow agents access and actions

This table describes AgentFlow agents based on access level, supported actions, and licensing requirements.

AgentIncludedSupported actionsRequires write accessWeb enrichmentLicense required
Data Explorer AgentYesRead-only exploration, profile lookups, relationship viewsNoNoNo
Match Resolver AgentNoMatch review, attribute comparison, merge or reject actionsYesOptionalYes

Access requirements

Each agent enforces role-based access and feature-level controls. You must have the appropriate roles and privileges in your Reltio tenant to use licensed or write-enabled agents.

  • Data Explorer Agent: Requires read-only access. All attribute masking rules are enforced.
  • Match Resolver Agent: Requires read access to all candidate attributes and write access to perform merges or rejections. If web enrichment is enabled, the Web Search toggle must be turned on per user.

Role examples

Here's how access typically maps to user roles:

User roleCan use Data Explorer Agent?Can use Match Resolver Agent?
Data StewardYesYes (with write access)
Business UserYesNo
System AdministratorYesYes (if enabled)

To learn more about merging and match resolution, see Resolve matches in AgentFlow using the Match Resolver Agent.

AgentFlow execution privileges

In addition to the standard role mappings shown above, AgentFlow enforces a dedicated set of permissions for the MCP server and agents. These permissions give tenant administrators precise control over who can execute functions through AgentFlow, beyond the basic read/write checks at the API level.

AgentFlow Permissions

Service nameResourceAvailable permissionsDescription
agentflowmcpCREATE, READ, UPDATE, DELETE, EXECUTEControls access to Model Context Protocol (MCP) server functionality.
agentflowagentsCREATE, READ, UPDATE, DELETE, EXECUTEControls access to AgentFlow agents.

AgentFlow System Roles

RoleAccess Privileges
ROLE_EXECUTE_MCPagentflow.mcp.EXECUTE
ROLE_ADMIN_MCPagentflow.mcp.ALL
ROLE_EXECUTE_AGENTSagentflow.mcp.EXECUTE (MCP prerequisite) + agentflow.agents.EXECUTE
ROLE_ADMIN_AGENTSagentflow.ALL
Note: MCP execution rights are a prerequisite for using Agents.

Updated on August 28, 2025

Footer

You've found your way to a temporary environment. Content is not complete or final. Looking for Reltio documentation? Go to docs.reltio.com.

© 2025 The RELTIO® mark is a registered trademark of Reltio, Inc. in the United States and other countries; DataDriven and Reltio Data Cloud are trademarks of Reltio, Inc. Other names or marks are trademarks of their respective owners.

Terms and Conditions, Privacy Policy, and