# Vault Roles

While depositing and withdrawing assets from Vaults is permissionless (though each address is managed independently), certain administrative functions require specific user roles. The table below details these roles and their associated permissions.

| Role      | Addresses                                                                                                                                           | Description                                                                               |
| --------- | --------------------------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------------------------------------------------------- |
| Owner     | eth:0xc01Ba42d4Bd241892B813FA8bD4589EAA4C60672                                                                                                      | <p><br></p>                                                                               |
| Curator   | None (owner has the same rights)                                                                                                                    |                                                                                           |
| Allocator | <p>0xfeed46c11f57b7126a773eec6ae9ca7ae1c03c9a</p><p>0x29d4CDFee8F533af8529A9e1517b580E022874f7</p><p>0xfd32fA2ca22c76dD6E550706Ad913FC6CE91c75D</p> | <p>Reallocation Bot</p><p>Manual Reallocation Multisig<br>Public Reallocator contract</p> |
| Guardian  | [csusdl-guardian.dao.eth](https://app.aragon.org/#/daos/ethereum/csusdl-guardian.dao.eth/dashboard)                                                 | Aragon DAO controlled by lenders                                                          |