Summary and recommendation
Nuclino user management can be run manually, but complexity usually increases with role models, licensing gates, and offboarding dependencies. This guide gives the exact mechanics and where automation has the biggest impact.
Nuclino is a team wiki and knowledge base with a two-tier role model: workspace-level roles (Workspace Admin, Member) and team-scoped roles (Team Admin, Member). Access to content is controlled entirely at the team level - there are no per-item or per-folder permission sets.
Every app in your stack that relies on Nuclino for documentation or runbooks is affected when team membership is misconfigured, since members only see teams they have been explicitly added to.
Quick facts
| Admin console path | Workspace Settings → Members |
| Admin console URL | Official docs |
| SCIM available | No |
| SCIM tier required | Standard/Premium |
| SSO prerequisite | No |
User types and roles
| Role | Permissions | Cannot do | Plan required | Seat cost | Watch out for |
|---|---|---|---|---|---|
| Workspace Admin | Full control over workspace settings, billing, member management, team creation, and all content. Can invite and remove members, change roles, and configure SSO. | Cannot be removed from the workspace by non-admin members. Cannot downgrade themselves without another admin present. | All plans (Free, Standard, Premium) | Counts as a full paid seat on Standard and Premium plans | There must always be at least one Workspace Admin; the last admin cannot be removed or demoted. |
| Workspace Member | Can create, edit, and share content within teams they belong to. Can be granted Team Admin rights within specific teams. | Cannot access workspace-level settings, billing, or manage other members at the workspace level. | All plans (Free, Standard, Premium) | Counts as a full paid seat on Standard and Premium plans | Members only see teams they have been explicitly added to; content in other teams is not visible. |
| Team Admin | Can manage membership and settings for a specific team, including adding/removing team members and adjusting team-level access. | Cannot manage workspace-level settings, billing, or teams they are not an admin of. | All plans | Counts as a full paid seat; no separate cost for Team Admin role | Team Admin is a team-scoped role, not a workspace-level privilege. A Team Admin who is not a Workspace Admin has no elevated access outside their team. |
| Guest / External Member | Nuclino does not appear to offer a distinct guest/external user role as of the last verified documentation. All invited users become workspace members. |
Permission model
- Model type: role-based
- Description: Nuclino uses a two-tier role-based model: workspace-level roles (Workspace Admin, Member) and team-level roles (Team Admin, Member). Access to content is controlled by team membership. Individual item-level permissions are not available; access is granted at the team level.
- Custom roles: No
- Custom roles plan: Not documented
- Granularity: Team-level access control. No per-item or per-folder custom permission sets. Admins can make individual items or clusters public (view-only link sharing) but cannot assign granular per-user permissions on individual items.
How to add users
- Navigate to Workspace Settings → Members (https://app.nuclino.com/settings/members).
- Click 'Invite members'.
- Enter the email address(es) of the user(s) to invite.
- Select the workspace role to assign (Admin or Member).
- Click 'Send invite'. The invitee receives an email invitation to join the workspace.
- Once accepted, optionally add the new member to specific teams via the Teams section.
Required fields: Email address of the invitee
Watch out for:
- Inviting a user immediately counts against the paid seat count on Standard and Premium plans once the invitation is accepted.
- On the Free plan, there is no published hard cap on members, but the 50-item and 2GB storage limits apply to the whole workspace.
- Users must accept the email invitation before they appear as active members; pending invitations may still consume a seat slot depending on billing cycle.
- New members do not automatically have access to any teams; team membership must be configured separately after the workspace invite is accepted.
| Bulk option | Availability | Notes |
|---|---|---|
| CSV import | No | Not documented |
| Domain whitelisting | No | Automatic domain-based user add |
| IdP provisioning | No | Not documented |
How to remove or deactivate users
- Can delete users: Yes
- Delete/deactivate behavior: Nuclino allows workspace admins to remove (permanently remove from the workspace) a member. There is no separate 'deactivate' or 'suspend' state documented; removal is the primary offboarding action. Content created by the removed user remains in the workspace.
- Navigate to Workspace Settings → Members.
- Locate the member to remove.
- Click the options menu (three dots or similar) next to the member's name.
- Select 'Remove from workspace'.
- Confirm the removal. The user loses access immediately.
| Data impact | Behavior |
|---|---|
| Owned records | Content (items, clusters) created by the removed user remains in the workspace and is accessible to remaining members with team access. Ownership is not reassigned automatically. |
| Shared content | Shared items and team content the removed user contributed to remain intact and accessible to other team members. |
| Integrations | Any personal integrations or connected apps configured by the removed user may stop functioning; workspace-level integrations are unaffected. |
| License freed | The seat is freed upon removal, and the billing count decreases at the next billing cycle or immediately depending on plan terms. |
Watch out for:
- The last Workspace Admin cannot be removed; another admin must be promoted first.
- There is no 'deactivate' or 'suspend' option - removal is permanent from an access perspective, though content is retained.
- Removed users can be re-invited, which would consume a new seat.
License and seat management
| Seat type | Includes | Cost |
|---|---|---|
| Free seat | Up to 50 items total workspace, 2GB total storage, core collaboration features | $0 |
| Standard seat | Unlimited items, 10GB storage per user, version history, advanced search | $6/user/month (annual billing) or $8/user/month (monthly billing) |
| Premium seat | All Standard features plus SSO, advanced permissions, priority support, and additional admin controls | $9/user/month (annual billing) or $12/user/month (monthly billing) |
- Where to check usage: Workspace Settings → Members (to see active member count); Workspace Settings → Billing (to see seat count and subscription details)
- How to identify unused seats: No built-in last-active or login-activity report is documented in the Nuclino help center. Admins must manually review the Members list and cross-reference activity; there is no automated unused-seat detection tool.
- Billing notes: Annual billing provides approximately 25% discount versus monthly. All invited and accepted members count as paid seats on Standard and Premium plans. Pending invitations' seat-counting behavior is not explicitly documented. No per-team or role-based seat differentiation - all members cost the same per-seat rate.
The cost of manual management
Nuclino has no SCIM provisioning and no native webhooks, so every user lifecycle event - onboarding, role change, offboarding - requires manual action in the Workspace Settings → Members console. There is no deactivate or suspend state; removal is the only offboarding action, and it is permanent from an access perspective.
New members must also be manually added to each relevant team after accepting a workspace invite, which compounds the overhead in larger organizations.
No last-login or activity report is available in the Nuclino UI. Identifying unused paid seats on Standard or Premium plans requires manually reviewing the Members list with no automated tooling to assist.
What IT admins are saying
Admins consistently flag the absence of granular permission controls as a structural limitation - there is no way to restrict access below the team level.
The lack of a suspend or deactivate state is a recurring offboarding complaint, as is the requirement to manually add each new member to individual teams post-invite.
The absence of bulk CSV import for users is cited as a friction point during large-scale onboarding. No SCIM support means IdP-driven automation is not an option, leaving every provisioning and deprovisioning action as a manual step.
Common complaints:
- Users report that Nuclino lacks granular permission controls, with no ability to set per-item or per-folder access restrictions beyond team-level membership.
- Admins note the absence of a 'deactivate' or 'suspend' user state, meaning offboarding requires full removal with no temporary access restriction option.
- Users have noted there is no last-login or activity report available to identify inactive members consuming paid seats.
- Some users report that new members must be manually added to each team after accepting a workspace invite, which is time-consuming in larger organizations.
- The lack of CSV bulk import for users is cited as a friction point when onboarding large teams.
- No SCIM provisioning support means automated user lifecycle management via IdP is not available, requiring manual offboarding.
The decision
Nuclino fits teams that need a lightweight, fast wiki without complex permission requirements. The team-level access model is sufficient for most small-to-mid-size organizations, but it becomes a liability at scale when fine-grained content access or automated provisioning is required.
SSO via SAML (Okta, Entra ID, OneLogin) is available on the Premium plan, but it does not include automated provisioning - user accounts must still be managed manually. Teams requiring IdP-driven lifecycle management should weigh this gap carefully before committing to Nuclino at scale.
Bottom line
Nuclino delivers a clean, fast knowledge base experience, but its manual-only user lifecycle model creates real operational overhead as headcount grows.
Every app decision that touches access governance is affected by the absence of SCIM, the lack of a suspend state, and the absence of any activity reporting.
Teams with straightforward wiki needs and modest scale will find the manual workflows manageable; organizations with strict access review requirements or high employee turnover will feel the gap acutely.
Automate Nuclino workflows without one-off scripts
Stitchflow builds and maintains end-to-end IT automation across your SaaS stack, including apps without APIs. Built for exactly how your company works, with human approvals where they matter.
