Creating New Application Users

After you log in to the IAM console, the first task is to create additional user accounts.

You should assign specific user groups to the user accounts that you are creating. There are seeded user groups available with the respective services, users must be mapped to one or more of the user groups, depending on the role that they perform.

For example, you can create a user for each member of your team. Each member can then sign into the account with their credentials. You can also assign each user to specific user groups and apply specific security policies or roles to each group.

You can create the users and map the users to groups for your service. After creating the users, the users will receive a Welcome email. The users must activate their accounts and enter a new password to access the services.

To create users in the IAM Console:
  1. In the IAM Console, select Domains (Identity domain) to view the list existing domains.
  2. Click the required Domain Name, to access the Domain Details page.

    Note:

    If you are using a custom domain, select the custom domain name before proceeding with the steps below. For more information, see the Creating Custom Domain section.
  3. On the details page, perform one of the following actions depending on the option that you see:
    • Select the User management tab, and then go to the User section of the tab.
    • Under Identity domain on the left side of the page, select Users.
  4. Under Users and select Create, to proceed with the user creation.
  5. In the First name and Last name fields enter the user's name.
  6. To have the user sign in with their email address, follow these steps:
    1. Leave the Use the email address as the username checkbox selected.
    2. In the Username / Email field, enter the email address for the user account.
  7. To have the user sign in with their username, follow these steps:
    1. Clear the Use the email address as the username checkbox.
    2. Enter the unique name for the user. You cannot change this value later.

      Note:

      The name must meet the following requirements: No spaces. Only Basic Latin letters (ASCII), numerals, hyphens, periods, underscores, +, and @.
    3. In the Email field, enter the email address for the user account.

      Note:

      If the Primary email address required checkbox is selected on the Domain settings page, then you must provide an email address in the Email field to create the user account.

      If the Primary email address required checkbox is not selected, then you can create the account without entering an email address in the Email field.

  8. Select the user groups according to your user-specific groups or access, in the Groups (Optional).

    Note:

    After a user logs in to a specific cloud service, the user to user-group mapping created in the IAM Console will onboard into the master and mapping tables. Later, if you deselect (remove) a user from a group in Assign User to Groups after provisioning, ensure that you also unmap the user from the corresponding user-group in the Admin Console. This is a mandatory step to complete the unmapping process.
  9. After entering the required information, click Create to create and add the new user to the User Summary.

You can also batch import several users using a .CSV file.