[Yandex Cloud documentation](../../index.md) > [Yandex Identity Hub](../index.md) > [Step-by-step guides](index.md) > Managing organizations > Hiding information about organization members

# Blocking users from viewing information about organization members

{% note info %}

You can deny viewing the list of organization users by assigning the `organization.denyUserListing` [authorization policy](../../iam/concepts/access-control/access-policies.md) to the [organization](../concepts/organization.md).

{% endnote %}

By default, all Yandex Identity Hub users can view information about all other users in the same organization. You can restrict this access by reserving it for individual users only. User visibility restriction will only apply within Yandex Cloud and will not affect external services.

Before you block access to the information about organization members, make sure to [grant](add-role.md) this access to the appropriate users.

{% cut "Roles allowing users to view information about organization members:" %}

* `auditor`
* `viewer`
* `editor`
* `admin`
* `organization-manager.users.viewer`
* `organization-manager.groups.memberAdmin`
* `organization-manager.federations.userAdmin`
* `organization-manager.viewer`
* `organization-manager.admin`
* `organization-manager.organizations.owner`

{% endcut %}

{% note alert %}

When assigning user roles, for security reasons, apply the [least privilege principle](../../security/domains/iam-checklist.md#resources-and-roles), i.e., assign roles with minimal permissions to perform only the required tasks.

{% endnote %}


To block users from viewing information about other organization members:

{% list tabs group=instructions %}

- Cloud Center UI {#cloud-center}

  1. Log in to [Yandex Identity Hub](https://center.yandex.cloud/organization) using an administrator or organization owner account.

      [Switch](manage-organizations.md#switch-to-another-org) to an organization or federation of your choice as needed.

  1. At the top of the screen, navigate to the **Identity Hub** tab.

  1. In the left-hand panel, select ![shield](../../_assets/console-icons/shield.svg) **Security settings**.

  1. Under **Confidentiality**, enable **Block users from viewing the list of organization members and their details**.

      Disable this option to allow users to view information about other organization members.

{% endlist %}