IAM user management
IAM user management
IAM resources page allows you to manage and regulate user access, so you can control the type of roles and permissions that IAM resources have in your platform.
IAM allows you to quickly control the access of your resources limiting the interaction with the platform based on the required level of access. With the Platform Administrator role, you can not only have all permissions but also customize roles and assign specific permissions as needed. This is an out-of-the-box role granted once the account is first created and has the following permissions:
Permission | Description |
|---|---|
iam.users.view | Allow to view users |
iam.users.create | Allow to create users |
iam.users.update | Allow to update users |
iam.users.delete | Allow to delete users |
iam.users.bulkdelete | Allow to delete multiple users |
The IAM Users page allows you to manage users and their roles controlling your access management needs quickly and efficiently. To access this page, go to the IAM page; from the left navigation bar, select the
Users
option. Managing users permissions
- From the IAM users page, click theoverflow menunext to the user that you want to manage.
- SelectManage role.
- Update the roles assigned to the user from the list of options.
- ClickConfirm.
Deleting users
- From the IAM users page, click theoverflow menunext to the user that you want to delete.
- SelectDelete.
- Confirm the deletion.
Assigning Access Policy directly to a user
Access Policy governs Access Group permissions to perform actions within the platform. Assigning an Access Policy to an Access Group allows group members to inherit the same permissions. However, You can assign an access policy to a user, without any association to any access group depending on your access level.
An Access Policy includes a
Subject
(User IDs, Services IDs, Access Groups), a Target
(associates resources), and a Permission
(associates roles).- Select the users tab from the left navigation bar.The Member Detailspage opens
- ClickAdd Newat the top of the page, and selectAssign Access Policy.
- Complete the following information:
- Select Service:Select the service available from the dropdown menu.
- Select Scope:Based on the service that you selected, click the radio button that applies to your selection:
- All resources: The Access Policy is assigned to all resources within the Access Group.
- Resources based on selected attributes: You can add acccess tags or attributes for a more specific access selection. You can add all the existent attributes by clicking theAdd attribute +link. Based on the attribute selected, select theattribute nameandattribute valuefrom the dropdown list. The attribute operator is set equal by default.
- Select Role:Select the Platform role or roles that you want to assign to this Access Policy. You may also select one of the Custom Roles that you have created. For additional information on the permissions associated to that specific role, click the tag numbers.
- ClickAssignat the bottom of the Summary pane to finish. TheMember Detailspage for that specificUseris automatically updated displaying the new access policy.
Updating an Access Policy directly from a user
- Select the member that you want to update the Access Policy to.The Member Detailspage opens.
- Click theoverflow menunext to the Access Policy that you want to update.
- SelectView details. The Access Policy Details page opens.
- ClickEdit.
- Make the necessary updates and clickUpdate.
Removing an Access Policy directly from a user
- Select the member that you want to remove the Access Policy to.The Member Detailspage opens.
- Click theoverflow menunext to the Access Policy that you want to remove.
- SelectRemove.
Do you have two minutes for a quick survey?
Take Survey
