4.1 Users and Roles
Understand the following terms before you begin performing User Management.
- Users: Customers create users in Identity and
Access Management (IAM) and can do the following:
- Map them to existing groups
- Create new groups to map them
After users are created, they are synced from IAM to the Cloud Service.
- Groups: Groups are seeded (available out-of-the-box) by your Cloud Service. Customers can also create new groups in IAM. After groups are created, they are synced from IAM to the Cloud Service. Groups are mapped to roles using the Cloud Service by the same user that was created using IAM.
- Roles: Roles are seeded by the Cloud Service. Customers can also create new roles using the Cloud Service and assign existing functions to these new roles.
- Functions: Functions are seeded by the Cloud Service. Customers cannot create new functions; however, they can only use the existing functions.