# Data access control ## Default user When you create a Redis Cloud database, your database is given a randomly generated password called the [**Default user password**](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/default-user). Learn how to [change the default user password](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/default-user#change-password) or [turn off default user access](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/default-user#turn-off-default-user). ## Role-based access control With [role-based access control (RBAC)](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/role-based-access-control.md), you create roles and assign users to those roles to grant different levels of access to the database. - [Enable RBAC](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/role-based-access-control) - [Configure ACLs](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/configure-acls) - [Create roles](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/create-roles) - [Create and edit database users](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/create-assign-users) - [Active-Active roles](http://redis.io/docs/latest/operate/rc/security/access-control/data-access-control/active-active-roles)