Discover the IAM resources page, which allows you to manage and regulate user access, so you can control the type of roles and permissions that IAM resources have in your platform.
The main benefit of managing users is that you get to quickly control the access management of your resources, so they can interact with the platform based on the required level of access that you grant them.
The following permissions are needed to be able to manage users to your platform. The
Platform Administrator
role, which is the out-of-the-box role granted to you when the account is first created, is the only role that includes all these permissions. Alternatively, as a
Platform Administrator
, you can create Custom Roles and assign them the permissions needed to invite users.
Permission
Description
iam.users.view
Allow to view users
iam.users.create
Allow to create users
iam.users.update
Allow to update users
iam.users.delete
Allow to delete users
iam.users.bulkdelete
Allow to delete multiple users
Accessing the Users page
The IAM Users page allows you to manage users and their roles. In this way, you can control your access management needs quickly and efficiently.
To manage your users, follow these steps:
Access the IAM page.
Select
Users
from the left navigation bar of the page. The Users page opens.
In the IAM Users page, you can perform a series of actions to personalize your users' access management needs, including the following:
Managing users permissions
Deleting users
Managing Access Policies directly for a user
Assigning an Access Policy directly to a user
Updating an Access Policy directly for a user
Removing an Access Policy directly from a user
Unlinking IdPs
Managing users permissions
Click the
overflow menu
next to the user that you want to manage.
Select
Manage role
.
Update the roles assigned to the user from the list of options.
Click
Confirm
.
Deleting users
Click the
overflow menu
next to the user that you want to delete.
Select
Delete
.
Confirm the deletion.
Assigning an Access Policy directly to a user
You can assign Access Policies to resources depending on your level of access.
You can assign an Access Policy directly to a user, without associating it to any Access Groups, by following these step
Select the users tab from the left navigation bar.
The Member Details
page opens
Click
Add New
at the top of the page, and select
Assign Access Policy
. A new page is displayed.
Complete the following information:
Select Service:
Select the service available from the dropdown menu.
Select Scope:
Based on the service that you selected, click the radio button that applies to your selection:
If you select
All resources
, the Access Policy is assigned to all resources within the Access Group.
If you select
Resources based on selected attributes
, you can add acccess tags or attributes for a more specific access selection.
Access Tags: Select and access tag from the dropdown list.
Attributes: Select an attribute from the dropdown list. You can add all the existent attributes by clicking the
Add attribute +
link.
Based on the attribute selected, select the
attribute name
and
attribute value
from the dropdown list. The attribute operator is set equal by default.
Select Role:
Select the Platform role or roles that you want to assign to this Access Policy. You may also select one of the Custom Roles that you have created. For more information, see Administration Platform roles.
A tag number lets you know how many permissions are associated to that specific role. Click said tag number to learn about the permissions' descriptions.
Click
Assign
at the bottom of the Summary pane to finish.
The
Member Details
page for that specific
User
is automatically updated and the new Access Policy is displayed.
To learn more about the specific permissions and descriptions for each of the roles, navigate to the Roles page and follow these steps:
Access the IAM page.
Select
Roles
from the left navigation bar of the page. The Roles page opens and a list of roles become available.
Click the tag number that appears next to the Role name, and you will be able to scroll through all permissions and descriptions assigned to that specific role.
Updating an Access Policy directly for a user
You can update an Access Policy directly for a user by following these steps:
Select the member that you want to update the Access Policy to.
The Member Details
page opens.
Click the
overflow menu
next to the Access Policy that you want to update.
Select
View details
. The Access Policy Details page opens.
Click
Edit
.
Make the necessary updates and click
Update
.
Removing an Access Policy directly from a user
You can remove an Access Policy directly from a user by following these steps:
Select the member that you want to remove the Access Policy to.
The Member Details
page opens.
Click the
overflow menu
next to the Access Policy that you want to remove.