Set User Privileges

Prerequisites: Only contract administrators, owners, and users with valid access rights can view, use, or edit resources in a VDC. These access rights are assigned to groups and are inherited by group members.

Set access rights and ownership

By default, a resource creator is the resource's owner and can specify access rights. The Security tab of the respective resource displays its ownership details. The following table shows the access rights necessary to access and use a resource.

Access rights

Description

Read

Users can view and use the resource but not modify it. Read access is automatically granted when a user is assigned to a group with this access right

Edit

Modify and delete the resource.

Share

Share a resource, including their access rights, with the groups to which they belong.

Set restrictions using 2-factor authentication

In addition to enabling access to a resource, you can activate 2-factor authentication for your data centers and snapshots. Only users authorized with 2-factor authentication can access the data centers and snapshots, and unauthorized users cannot view or access the resources, even if they belong to an authorized group.

Depending on their role, users can set access rights at the resource level and via the User Manager.

Manage access rights

To manage access rights, you can either set permissions directly at the resource level or use the User Manager to control access for users and groups. Both methods allow you to define who can view, edit, or share resources according to your organizational requirements.

Prerequisites: Only contract owners, administrators, or users with relevant access rights can share the required resource. Other user types have read-only access and cannot provision changes.

To manage access rights at the resource level, follow these steps:

  1. In the DCD, go to Menu and select the appropriate resource type:

    • Images: Storage & Backup > Images & Snapshots > Image

    Image Access Rights
    • Snapshots: Storage & Backup > Images & Snapshots > Snapshot

    Snapshot Access Rights
    • IP addresses: Network Services > IP Management

    IP Management Access Rights
    • Kubernetes Cluster: Containers > Managed Kubernetes

    Managed Kubernetes Access Rights
  2. Select the required resource for which you would like to manage access rights.

  3. Select Security > Visible to Groups.

Note: Select the 2-Factor Protected option to protect a resource (Data Center, Snapshots) more thoroughly by only allowing access to users whose logins are secured with 2-factor authentication.

  1. From the Add Group drop-down list, select the required groups to enable access.

  2. (Optional) Select further permissions (Edit, Share). You may only share those permissions that you have.

Group Permissions

Note:

  • Read access is automatically granted when a user is assigned to a group with this access right.

  • To restrict access, clear the respective checkbox or click Remove Group. Remember that clicking Remove Group removes access for all selected group members.

Assign resources to a group

To assign resources to a group, follow these steps:

  1. In the DCD, go to the Menu > Management > Users & Groups.

  2. Select the required group in the Groups tab.

  3. Select the Resources of Group tab.

  4. Select the required resource by clicking on Grant Access. This enables read access to the selected resource.

  5. (Optional) Select Edit to enable write access or Share to enable resource sharing.

Note: To revoke or restrict access, you can clear the respective checkbox or click Revoke Access.

Assign resources to a group

For more information about creating and managing the groups, see Manage User Access.

Last updated

Was this helpful?