Summary and recommendation
Figma user management can be run manually, but complexity usually increases with role models, licensing gates, and offboarding dependencies. This guide gives the exact mechanics and where automation has the biggest impact.
Figma's admin controls live at figma.com → Admin → Members and cover the full member lifecycle: invite, role assignment, seat management, and removal. Unlike every app that gates provisioning behind enterprise tiers, Figma makes basic SCIM available on its Organization plan - but SAML SSO must be configured first.
Roles operate across three layers - organization, team, and file - so access decisions made at one level can be overridden or restricted at another.
Quick facts
| Admin console path | figma.com → (org/team name) → Admin → Members |
| Admin console URL | Official docs |
| SCIM available | Yes |
| SCIM tier required | Organization or Enterprise |
| SSO prerequisite | Yes |
User types and roles
| Role | Permissions | Cannot do | Plan required | Seat cost | Watch out for |
|---|---|---|---|---|---|
| Org Admin | Full administrative control over the organization: manage members, teams, billing, SSO/SCIM settings, audit logs, and security policies. Can view and manage all teams and projects within the org. | Cannot edit files they have not been granted explicit file access to unless they also hold an Editor seat. | Organization or Enterprise | Counts as a full Editor seat ($55/user/mo on Organization, $90/user/mo on Enterprise, annual only) | Org Admin role does not automatically grant edit access to all files; file-level permissions are separate. |
| Team Admin | Manage members and settings within a specific team. Can add/remove team members, change team visibility, and manage team-level permissions. | Cannot manage org-wide settings, billing, SSO, or members outside their team. | Professional, Organization, or Enterprise | Counts as an Editor seat at the applicable plan rate. | Team Admin is a team-scoped role, not an org-level role; does not appear in the org admin console as an org-level admin. |
| Editor | Create, edit, and publish Figma and FigJam files. Can create teams and projects (subject to org settings). Can share files and invite collaborators. | Cannot access admin settings, billing, or SSO configuration. | Starter (limited), Professional, Organization, or Enterprise | $16/user/mo (Professional, annual) or $20/user/mo (monthly); $55/user/mo (Organization); $90/user/mo (Enterprise) | On Organization and Enterprise plans, Editor seats are paid and must be explicitly assigned. Granting edit access to a file automatically consumes an Editor seat if the user does not already have one. |
| Viewer | View, comment on, and inspect files they have been given access to. Can duplicate files to their own drafts. Can join teams as a viewer. | Cannot edit files, create new files, or access admin settings. | All plans (free on Professional and above) | Free on Professional, Organization, and Enterprise plans. | Viewers can be upgraded to Editor by any Editor or Admin who shares a file with edit permissions, which triggers a paid seat assignment. |
| Viewer-Restricted | View and comment on files only. Cannot copy, export, or inspect file properties. More restrictive than standard Viewer. | Cannot copy files, export assets, or use the Inspect panel. | Organization or Enterprise | Free (no paid seat required). | Must be explicitly set by an admin or file owner; not the default viewer role. |
Permission model
- Model type: role-based
- Description: Figma uses a layered role-based permission model. Roles exist at three levels: organization (Org Admin), team (Team Admin, Member, Viewer), and file/project (Editor, Viewer, Viewer-Restricted). Org-level roles govern administrative access; team and file roles govern content access. Permissions cascade downward but can be restricted at lower levels.
- Custom roles: No
- Custom roles plan: Not documented
- Granularity: Three levels: organization, team, and file/project. No custom role creation. Admins can control default seat type assigned to new members via org settings on Organization and Enterprise plans.
How to add users
- Navigate to figma.com and open the Admin panel for your organization (Admin → Members).
- Click 'Invite members' or 'Add members'.
- Enter the email address(es) of the user(s) to invite.
- Select the role to assign: Editor or Viewer (Viewer-Restricted available on Org/Enterprise).
- Optionally assign the user to one or more teams during the invite flow.
- Click 'Send invite'. The user receives an email invitation and must accept to join.
- On Organization/Enterprise plans, if the invited user accepts and is assigned an Editor role, a paid seat is consumed immediately.
Required fields: Email address, Role (Editor or Viewer)
Watch out for:
- Inviting a user as an Editor on Organization or Enterprise plans immediately allocates a paid seat upon acceptance.
- On Enterprise plans with SCIM enabled, manual invitations may conflict with IdP-provisioned accounts; it is recommended to provision exclusively via SCIM to avoid duplicate accounts.
- Users invited to a file directly (not via the admin console) can also consume Editor seats if granted edit permissions, bypassing the admin invite flow.
- Domain verification (domain capture) on Organization/Enterprise plans can automatically add users with matching email domains to the org when they sign up, which may create unexpected seat consumption.
- Pending invitations still count toward seat limits on some plan configurations until the invite expires or is revoked.
| Bulk option | Availability | Notes |
|---|---|---|
| CSV import | No | Not documented |
| Domain whitelisting | Yes | Automatic domain-based user add |
| IdP provisioning | Yes | Organization or Enterprise (SCIM requires SAML SSO; full seat management via SCIM is on Enterprise) |
How to remove or deactivate users
- Can delete users: Verify in tenant
- Delete/deactivate behavior: This app exposes delete operations in its API documentation, but the admin-console path may present removal as deactivation, archiving, or deletion depending on tenant configuration. Confirm whether the UI action is reversible before treating removal as recoverable.
- Navigate to figma.com → Admin → Members.
- Locate the member using search or filters.
- Click the '...' (more options) menu next to the member's name.
- Select 'Remove from organization' (or 'Deactivate' if using SCIM-managed accounts).
- Confirm the removal in the dialog. The user is immediately removed from the org and loses access to org teams, projects, and files.
- For SCIM-managed users: deprovision the user in your IdP; the SCIM integration will automatically deactivate the user in Figma.
| Data impact | Behavior |
|---|---|
| Owned records | Files and projects owned by the removed user remain in the organization. Drafts in the user's personal drafts folder are not automatically transferred; admins on Enterprise can access and reassign content via admin controls. |
| Shared content | Shared files and projects the user contributed to remain intact and accessible to other members who had access. |
| Integrations | Any personal access tokens or OAuth connections created by the removed user are invalidated. Webhooks or API integrations using their credentials will stop functioning. |
| License freed | The paid Editor seat is freed immediately upon removal and is available for reassignment or reduces the next billing cycle's seat count, depending on plan billing terms. |
Watch out for:
- Drafts owned by a removed user are not automatically reassigned; on non-Enterprise plans, this content may become inaccessible without manual intervention before removal.
- On Enterprise plans, admins can use the 'Content management' admin tools to locate and transfer files before removing a user.
- Removing a user does not cancel any active file-sharing links they created; those links may remain functional until explicitly revoked.
- If the user is re-invited after removal, they rejoin as a new member and a new seat is allocated; historical activity may not be fully restored.
- SCIM deprovisioning is the recommended method for Enterprise orgs to ensure consistent deactivation across SSO and Figma simultaneously.
License and seat management
| Seat type | Includes | Cost |
|---|---|---|
| Editor seat | Full create and edit access to Figma Design and FigJam files. Required for any user who needs to create or edit content. | $16/user/mo (Professional, annual); $20/user/mo (Professional, monthly); $55/user/mo (Organization, annual only); $90/user/mo (Enterprise, annual only) |
| Viewer seat | View and comment on files. No editing capability. Includes Inspect panel access (standard Viewer). | Free on Professional, Organization, and Enterprise plans. |
| Viewer-Restricted seat | View and comment only. No copy, export, or Inspect panel access. | Free. Available on Organization and Enterprise plans only. |
- Where to check usage: figma.com → Admin → Members (shows all members with their assigned roles and seat types); Admin → Billing (shows total seat count and cost).
- How to identify unused seats: Figma does not natively surface a 'last active' or 'last login' date in the standard admin Members view for all plans. Enterprise plans with audit log access can use activity logs to identify inactive Editor seats. Third-party IdP activity reports or SCIM audit logs can supplement this. Admins can manually review the member list and downgrade inactive Editors to Viewer to free seats.
- Billing notes: Organization and Enterprise plans are billed annually per Editor seat. Viewer seats are free and unlimited. Adding an Editor mid-cycle is prorated. Removing an Editor mid-cycle does not generate a refund on annual plans; the seat count adjusts at the next renewal. As of early 2025, Figma introduced billing model changes affecting how seats are counted and managed, particularly for orgs migrating between plans or using SCIM. Admins should review the updated billing documentation before making bulk seat changes.
The cost of manual management
Without automated provisioning, repetitive admin work accumulates fast: manually inviting users, tracking seat types, and hunting down inactive Editor seats with no native last-active date visible in the Members panel on non-Enterprise plans.
Figma's billing model compounds this - Editor seats are consumed on invite acceptance, and a file owner sharing with edit permissions can silently allocate a paid seat without going through the admin console. On annual plans, removing an Editor mid-cycle does not generate a refund; the seat cost carries to renewal.
Bulk seat changes around plan migrations carry real financial risk without a clear audit trail, particularly given Figma's early-2025 billing model updates.
What IT admins are saying
Admins on community forums flagged Figma's 2025 billing changes as a source of unexpected cost increases, particularly for organizations adjusting SCIM configurations or migrating between plans.
The absence of a native last-active date in the Members panel on non-Enterprise plans is a recurring friction point - identifying unused Editor seats requires either Enterprise audit log access or manual review.
Viewer-to-Editor seat escalation without explicit admin approval is another common complaint: any file owner can share with edit permissions and trigger a paid seat assignment. The Organization vs.
Enterprise feature split - especially around full SCIM seat management and multiple IdP support - also generates confusion at the point of plan selection.
Common complaints:
- Billing model changes in 2025 (including seat count methodology updates) caused confusion and unexpected cost increases for some Organization plan customers migrating or adjusting SCIM configurations.
- No native 'last active' date visible in the admin Members panel on non-Enterprise plans, making it difficult to identify and reclaim unused Editor seats without audit log access.
- Viewer-to-Editor seat escalation can happen without explicit admin approval when a file owner shares a file with edit permissions, leading to unplanned seat consumption.
- Drafts owned by removed users are not automatically transferred on non-Enterprise plans, creating content loss risk.
- Organization vs Enterprise feature differentiation (e.g., full SCIM seat management, multiple IdP support via Governance+, audit logs) is not always clearly communicated, leading to plan selection confusion.
- Multiple IdP support (Governance+ feature) is only available on Enterprise, which surprises admins who assumed it was included in Organization.
- Pending invitations consuming seats before acceptance has been reported as unexpected behavior by admins managing large organizations.
- No bulk CSV import for users; large-scale manual onboarding without SCIM requires individual email invitations.
The decision
When evaluating every app in your design and collaboration stack, Figma's plan boundaries matter: choose Organization if you need basic SCIM provisioning and SAML SSO and can accept that full SCIM seat management and multiple IdP support are gated to Enterprise.
Move to Enterprise if your org requires complete SCIM-driven seat control, audit log access for inactive seat identification, or content management tools to transfer files before removing users. If you are on a non-Enterprise plan, establish a file-sharing policy to prevent unintended Editor seat escalation and plan for manual seat audits.
Review Figma's updated billing documentation before making bulk seat changes given the March 2025 billing model migration.
Bottom line
Figma's permission model is capable but layered: org, team, and file roles each carry independent access implications, and paid Editor seats can be allocated outside the admin invite flow.
Manual administration is workable at small scale but becomes error-prone as headcount grows - seat escalation, missing last-active data, and non-refundable annual seat costs all create compounding overhead.
Organizations on Enterprise have the tooling (audit logs, SCIM seat management, content transfer) to manage this systematically; those on Organization plan should build compensating processes around file-sharing governance and regular manual seat reviews.
Automate Figma workflows without one-off scripts
Stitchflow builds and maintains end-to-end IT automation across your SaaS stack, including apps without APIs. Built for exactly how your company works, with human approvals where they matter.
