> ## Documentation Index > Fetch the complete documentation index at: https://docs.firebolt.io/llms.txt > Use this file to discover all available pages before exploring further. > Learn about engine-level permissions in Firebolt. # Engine Permissions In Firebolt, an **engine** is a compute resource that processes data and serves queries. Engines provide **full workload isolation**, allowing multiple workloads to run independently while sharing access to the same data. Engines are also **decoupled from databases**, which means: * An engine can connect to multiple databases. * A database can be accessed by multiple engines. The following table outlines the privileges that can be granted for engines within a particular account: | Privilege | Description | GRANT Syntax | REVOKE Syntax | | ----------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | -------------------------------------------------------- | ----------------------------------------------------------- | | USAGE | Allows using an engine to run queries. | `GRANT USAGE ON ENGINE TO ;` | `REVOKE USAGE ON ENGINE FROM ;` | | OPERATE | Allows stopping and starting an engine. | `GRANT OPERATE ON ENGINE TO ;` | `REVOKE OPERATE ON ENGINE FROM ;` | | MODIFY | Allows altering engine properties or dropping the engine. | `GRANT MODIFY ON ENGINE TO ;` | `REVOKE MODIFY ON ENGINE FROM ;` | | MONITOR \[USAGE] | Enables the tracking of engine queries through the `engine_running_queries` view for active queries and the `engine_query_history` view for past queries in `information_schema`. | `GRANT MONITOR USAGE ON ENGINE TO ;` | `REVOKE MONITOR USAGE ON ENGINE FROM ;` | | ALL \[PRIVILEGES] | Grants all privileges over the engine to a role. | `GRANT ALL ON ENGINE TO ;` | `REVOKE ALL ON ENGINE FROM ;` | If a user lacks **USAGE** and **OPERATE** privileges for an engine, they will not be able to select or interact with the engine via the Firebolt UI. ## Examples of granting engine permissions ### USAGE permission The following code example grants the role `developer_role` permission to use the `myEngine` engine for executing queries: ```sql theme={"theme":{"light":"github-light","dark":"github-dark"}} GRANT USAGE ON ENGINE "myEngine" TO developer_role; ``` ### OPERATE permission The following code example gives the role `developer_role` permission to start and stop the `myEngine` engine: ```sql theme={"theme":{"light":"github-light","dark":"github-dark"}} GRANT OPERATE ON ENGINE "myEngine" TO developer_role; ``` ### MODIFY permission The following code example grants the role `developer_role` permission to alter properties or drop the `myEngine` engine: ```sql theme={"theme":{"light":"github-light","dark":"github-dark"}} GRANT MODIFY ON ENGINE "myEngine" TO developer_role; ``` ### MONITOR \[USAGE] permission The following code example grants the role `developer_role` permission to see the query history and currently running queries for the engine `myEngine`: ```sql theme={"theme":{"light":"github-light","dark":"github-dark"}} GRANT MONITOR USAGE ON ENGINE "myEngine" TO developer_role; ``` ### ALL permissions The following code example grants the role `developer_role` with all engine permissions on `myEngine`: ```sql theme={"theme":{"light":"github-light","dark":"github-dark"}} GRANT ALL ON ENGINE "myEngine" TO developer_role; ```