Manage user and group
Manage user
Users are account units that can access the KakaoCloud Console. The user management features described in this document are available only to users with the following IAM roles.
Manage user by IAM role
Feature | Org Owner | Org Admin | Org Reader | Project Admin | Project Member | Project Reader |
---|---|---|---|---|---|---|
Register user | ✓ | |||||
View user information within organization | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ |
Delete user | ✓ |
View user list
You can view the list of users registered in the organization.
-
Go to KakaoCloud Console > Management > IAM.
-
In the Users menu, view the information of users registered in the organization.
Category Description ID User login ID (email address) Name User name Nickname Nickname used within the organization Number of organization roles Number of assigned organization roles Number of groups Number of groups the user belongs to Last login Last console login date and time Registration date Date and time the user account was registered
Register user
Only registered users can access the KakaoCloud Console and use APIs. Only Org Admin can register users.
Accounts integrated with external IdPs may have limitations in being registered as KakaoCloud users.
-
Go to KakaoCloud Console > Management > IAM.
-
Click the [Register user] button on the User menu and select General register or Quick register.
-
Enter information and click the [Register] button.
- To register multiple people at once, use Quick register to add up to 100 people at a time.
-
Verify the registered user on the User menu.
- An invitation and password registration guide email will be sent to the email address registered as a KakaoCloud user. Users must set their initial password within 7 days to log into the console.
- If the invitation email is deleted or expires, click the user in the user list and click Resend invitation email in the Account tab.
View user details within organization
- In the user details view, you can check the user's account information, role details, and access keys issued under the account.
Only organizations that have signed up directly with KakaoCloud can check account statuses. If a customer's system is integrated with KakaoCloud accounts, account statuses will not be provided.
-
Go to KakaoCloud Console > Management > IAM.
-
In the Users menu, select a user to view detailed information.
-
In the Account information tab, review the user's details.
Category Description Organization ID Organization ID to which the user belongs Name (Nickname) User's name (nickname used within the organization) User UUID Unique user ID within the organization Last login Date and time of the last console login Contact email address Verified email address Mobile phone number User's mobile phone number User registration Date and time the user account was registered Account status KakaoCloud account status
- 🟢 Active: The initial KakaoCloud account password has been set, and the user can log in to the console.
- 🟡 Pending invitation: The initial KakaoCloud account password has not been set, and the user cannot log in to the console.
- ⚪️ Unknown: The user does not have permission for the KakaoCloud account or IAM cannot verify the status.
Manage user IAM roles
- In the IAM roles tab, you can view and manage a user's organization and project roles.
-
Go to KakaoCloud Console > Management > IAM.
-
In the Users menu, select the user whose details you want to view.
-
Click the IAM roles tab and select either the Organization or Project tab.
- Manage user organization roles
- Manage user project roles
In the Organization tab, you can view and manage the organization roles assigned to the user.
- Click the Edit role button to add or modify organization roles, then click [Edit].
- Click the Remove roles in bulk button, then confirm removal by clicking [Remove] in the popup window.
-
In the Project tab, you can view and manage the project roles assigned to the user.
- Select the project where you want to add or modify a role, click the [Edit role] button, adjust the role, and click [Edit].
- To remove roles in bulk, select the project, click the [Remove roles in bulk] button, then confirm by clicking [Remove] in the popup window.
At least one role must exist when modifying organization or project roles.
To remove all roles, use the Remove all roles feature.
Manage user groups
In the Groups tab, you can view and manage the list of groups to which a user belongs.
- Click the Add user to group button to assign a user to a group.
- Click Remove or the trash icon to remove a user from a group.
User access key
- In the Access key tab, you can view access key details issued by the user.
- You can check the access keys issued by the user.
Category | Description |
---|---|
Name | User-defined access key name |
ID | Access key ID value |
Project name | Name of the project where the access key was issued |
Expiration date | Access key expiration date |
Each user can create up to two access keys per project.
Delete user
Org Admin can delete users who no longer belong to the organization to prevent them from accessing resources.
For instructions on removing a specific user's permissions from a project, refer to Remove member from project.
When you delete a user, their access to the KakaoCloud Console is immediately restricted. All information associated with the user account is deleted and cannot be restored.
-
Go to KakaoCloud Console > Management > IAM..
-
Go to the User menu and click [More] icon > Delete user.
-
In the pop-up window, enter
Delete user from organization
and click the [Delete] button.
Create and manage group
Groups are collections of users who share specific roles. Groups allow you to assign and revoke roles to users all at once. The group management features described in this document are available only to users with the following IAM roles.
Manage group by IAM role
Feature | Org Owner | Org Admin | Org Reader | Project Admin | Project Member | Project Reader |
---|---|---|---|---|---|---|
Create group | ✓ | |||||
Delete group | ✓ | |||||
Add group members | ✓ | |||||
Remove group members | ✓ | |||||
View group members | ✓ | ✓ | ||||
Add group permissions | ✓ | |||||
Remove group permissions | ✓ | |||||
View group permissions | ✓ | ✓ |
Create group
Org Admin can create groups. Once a group is created, users can be added as members, and organization or project roles can be added, allowing for batch management of IAM roles.
-
Go to KakaoCloud Console > Management > IAM.
-
In the Groups menu, click the [Create group] button.
-
In Create group, enter the required group information and click the [Create] button.
Category Description Organization The currently logged-in organization (auto-filled) Group name Name of the group to be created
- Duplicate group names cannot be used within the organizationDescription (Optional) Up to 100 characters allowed
Delete group
Org Admin can delete groups. Deleting a group revokes all IAM roles granted by the group permissions. Additionally, for security reasons, the API tokens of the group members are immediately expired, and they are logged out of the KakaoCloud Console, unless they have separately assigned group permissions.
- Go to KakaoCloud Console > Management > IAM.
- Go to the Group menu and click the [More] icon > Delete group.
- Enter the name of the group to be deleted and click the [Delete] button.
Manage group members
Add member to group
-
Go to KakaoCloud Console > Management > IAM.
-
Select the group to add group members on the Group menu.
-
Click the [Add member].
-
In the pop-up window, enter the user ID and click the [Add] button.
- New accounts and service accounts which are not registered as IAM users cannot be added as group members.
Add member to group
Remove member from group
Org Admin can remove specific members from a group. Removing a group member revokes all IAM roles granted by the group permissions. Additionally, for security reasons, the API tokens of the removed group members are immediately expired, causing them to be logged out of the KakaoCloud Console.
-
Go to KakaoCloud Console > Management > IAM.
-
Select the group from which you want to remove group members on the Group menu.
-
On the Members tab, click [More] icon > Remove.
- To remove multiple users at once, click the checkbox for the users and click the [Remove] button.
-
If necessary, enter additional group members to remove and click the [Remove] button.
Remove member from group
Manage group IAM permissions
Org Admin can assign organization or project roles to specific groups.
- Go to KakaoCloud Console > Management > IAM.
- In the Group menu, select the group where you want to add members and open the details page.
- Click the IAM roles tab and select either the Organization or Project tab.
- Manage group organization roles
- Manage group project roles
In the Organization tab, you can view and manage the organization roles assigned to the group.
- Click the [Edit role] button to add or modify organization roles, then click [Edit] to apply changes.
- Click the [Remove roles in bulk] button, then confirm removal by clicking [Remove] in the popup window.
In the Project tab, you can view and manage the project roles assigned to the group.
- Select the project where you want to add or modify roles, click the [Edit role] button, adjust the role, and click [Edit].
- To remove roles in bulk, select the project, click the [Remove roles in bulk] button, then confirm by clicking [Remove] in the popup window.
At least one role must exist when modifying organization or project roles.
To remove all roles, use the Remove all roles feature.
View access key
Org Admin can view the access keys issued by users.
-
Go to KakaoCloud Console > Management > IAM.
-
In the Access key menu, you can view the list of access keys.
-
Select the [Expired access key] checkbox to filter expired accounts.
Category Description Creator The user ID that issued the access key Access key name The name of the access key set by the user Access key ID The ID of the access key Project name The name of the project where the access key was issued Expired at The expiration date of the access key