Cloud Services

ModernOps configuration

Expand menu Collapse menu

ModernOps configuration

IAM user management

Published On Sep 04, 2024 - 11:25 AM

IAM user management

IAM resources page allows you to manage and regulate user access, so you can control the type of roles and permissions that IAM resources have in your platform.

IAM allows you to quickly control the access of your resources limiting the interaction with the platform based on the required level of access. With the Platform Administrator role, you can not only have all permissions but also customize roles and assign specific permissions as needed. This is an out-of-the-box role granted once the account is first created and has the following permissions:

Permission	Description
iam.users.view	Allow to view users
iam.users.create	Allow to create users
iam.users.update	Allow to update users
iam.users.delete	Allow to delete users
iam.users.bulkdelete	Allow to delete multiple users

The IAM Users page allows you to manage users and their roles controlling your access management needs quickly and efficiently. To access this page, go to the IAM page; from the left navigation bar, select the Users
option.

Managing users permissions

From the IAM users page, click the overflow menu
next to the user that you want to manage.

Select Manage role
.

Update the roles assigned to the user from the list of options.

Click Confirm
.

Deleting users

From the IAM users page, click the overflow menu
next to the user that you want to delete.

Select Delete
.

Confirm the deletion.

Assigning Access Policy directly to a user

Access Policy governs Access Group permissions to perform actions within the platform. Assigning an Access Policy to an Access Group allows group members to inherit the same permissions. However, You can assign an access policy to a user, without any association to any access group depending on your access level.

An Access Policy includes a Subject
(User IDs, Services IDs, Access Groups), a Target
(associates resources), and a Permission
(associates roles).

Select the users tab from the left navigation bar. The Member Details
page opens

Click Add New
at the top of the page, and select Assign Access Policy
.

Complete the following information:

Select Service:
Select the service available from the dropdown menu.

Select Scope:
Based on the service that you selected, click the radio button that applies to your selection:

All resources
: The Access Policy is assigned to all resources within the Access Group.

Resources based on selected attributes
: You can add acccess tags or attributes for a more specific access selection. You can add all the existent attributes by clicking the Add attribute +
link. Based on the attribute selected, select the attribute name
and attribute value
from the dropdown list. The attribute operator is set equal by default.

Select Role:
Select the Platform role or roles that you want to assign to this Access Policy. You may also select one of the Custom Roles that you have created. For additional information on the permissions associated to that specific role, click the tag numbers.

Click Assign
at the bottom of the Summary pane to finish. The Member Details
page for that specific User
is automatically updated displaying the new access policy.

Updating an Access Policy directly from a user

Select the member that you want to update the Access Policy to. The Member Details
page opens.

Click the overflow menu
next to the Access Policy that you want to update.

Select View details
. The Access Policy Details page opens.

Click Edit
.

Make the necessary updates and click Update
.

Removing an Access Policy directly from a user

Select the member that you want to remove the Access Policy to. The Member Details
page opens.

Click the overflow menu
next to the Access Policy that you want to remove.

Select Remove
.

User invitations

Do you have two minutes for a quick survey?

Take Survey