Manage user and group
Manage user
Users are account units that can access the KakaoCloud Console. The user management features described in this document are available only to users with the following IAM roles.
Manage user by IAM role
Feature | Org Admin | Org Reader | Project Admin | Project Member | Project Reader |
---|---|---|---|---|---|
Register user | ✓ | ||||
View user information within organization | ✓ | ✓ | |||
Delete user | ✓ |
View user list
Org Admin and Org Reader can view user information registered in the organization.
-
Go to the KakaoCloud Console > Management > IAM.
-
In the Users menu, check the list of users registered in the organization.
Category Description ID User login ID (email address) Name User name Nickname Nickname used within the organization Number of organization roles Number of assigned organization roles Number of groups Number of groups the user belongs to Last login Date and time of the last console login Registration date Date and time the user account was registered
Register user
Org Admin can register and manage users in the console.
Accounts integrated with external IdPs may have limitations in being registered as KakaoCloud users.
-
Go to the KakaoCloud Console > Management > IAM.
-
In the Users menu, click the [Register user] button and select either General register or Bulk register.
-
On the Register user page, enter the required information and click the [Register] button.
- Using Bulk register, you can register up to 100 users at once.
-
Check the registered users in the Users menu.
-
Registered users will receive an organization invitation and password setup instructions by email.
- Users must set their password within 7 days after receiving the email to log in to the console.
- If the invitation email is deleted or expired, go to the user list, click the user, and click Resend invitation email from the Account tab.
View user details within organization
Org Admin and Org Reader can view a user's account details, roles, and access key information from the user detail page.
Only organizations that have signed up directly with KakaoCloud can check account statuses. Accounts integrated with customer systems cannot be checked.
-
Go to the KakaoCloud Console > Management > IAM.
-
In the Users menu, select the user you want to view.
-
In the Account Information tab, check the user’s detailed information.
Category Description Organization ID Organization ID the user belongs to Name (Nickname) User’s name (nickname used in the organization) User UUID Unique user ID within the organization Last login Last console login time Contact email address Verified email address Mobile phone number User’s mobile number User registration date Date when the user account was registered Account status KakaoCloud account status
- 🟢 Active: Initial password is set and the user can log in to the console.
- 🟡 Pending invitation: Initial password is not set, and the user cannot log in.
- ⚪️ Unknown: The user does not have KakaoCloud account permissions or IAM cannot verify the status.
Manage user IAM roles
Org Admin can view and manage a user’s organization and project roles in the IAM roles tab.
- Go to the KakaoCloud Console > Management > IAM.
- In the Users menu, select the user whose details you want to view.
- Click the IAM Roles tab and select the Organization/Project tab.
- Manage user organization roles
- Manage user project roles
- In the Organization tab, you can view and manage the organization roles assigned to the user.
- Click the [Edit roles] button to add or modify the organization roles, then click [Edit].
- Click the [Remove roles in bulk] button, then click [Remove] in the popup to delete all assigned organization roles.
- In the Project tab, you can view and manage the project roles assigned to the user.
- Select the project in which you want to add or modify roles, click the [Edit roles] button, then click [Edit] after adjusting the roles.
- To remove all roles in a project, select the project, click the [Remove roles in bulk] button, and then click [Remove] in the popup.
At least one role must be assigned when modifying organization/project roles. To remove all roles, use the Remove roles in bulk feature.
다음은 요청하신 "사용자 그룹 관리" 및 "사용자 자격 증명 조회" 섹션의 영어 번역입니다:
Manage user groups
Org Admin can view and manage the list of groups to which a user belongs in the Groups tab.
- Go to the KakaoCloud Console > Management > IAM.
- In the Users menu, select the user whose details you want to view.
- In the user details, click the Groups tab.
- Click the Add user to group button to assign the user to a group.
- Click Remove or the trash icon to remove the user from a group.
View user certification
Org Admin can view the credential information of users within the organization.
KakaoCloud provides IAM access keys and S3 access keys, and you can check the details for each key in the console.
- IAM access key
- S3 access key
IAM access key
-
View IAM access key information issued by the user in the IAM access key tab.
-
Check the details of the IAM access keys issued by the user.
Category Description Project name Name of the project where the IAM access key was issued Name IAM access key name set by the user ID IAM access key ID value Expiration date IAM access key expiration date
S3 access key
-
View S3 access key information issued by the user in the S3 access key tab.
-
Check the details of the S3 access keys issued by the user.
Category Description Project name Name of the project where the S3 access key was issued Name S3 access key name set by the user ID S3 access key ID value Creation date S3 access key creation date
Delete user
Org Admin can delete users who are no longer part of the organization due to reasons such as resignation, preventing them from accessing resources.
To remove a specific user's permissions from a project, refer to Remove member from project.
Once a user is deleted, their access to the KakaoCloud Console is immediately revoked. All account information is permanently deleted and cannot be restored.
- Go to the KakaoCloud Console > Management > IAM.
- In the Users menu, click the [More options] icon for the user you want to delete and select Delete user.
- In the pop-up window, enter
Delete user from organization
and click [Delete].
Create and manage group
A group is a collection of users who share a specific set of roles. You can assign or remove IAM roles to users collectively through groups.
The group management features described in this document are only available to users with the following IAM roles:
Group management by IAM role
Feature | Org Admin | Org Reader | Project Admin | Project Member | Project Reader |
---|---|---|---|---|---|
Create group | ✓ | ||||
Delete group | ✓ | ||||
Add group members | ✓ | ||||
Remove group members | ✓ | ||||
View group members | ✓ | ✓ | |||
Add group permissions | ✓ | ||||
Remove group permissions | ✓ | ||||
View group permissions | ✓ | ✓ |
Create group
Org Admin can create groups. After creating a group, you can register users as members and assign organization or project roles to collectively manage IAM roles.
-
Go to the KakaoCloud Console > Management > IAM.
-
In the Groups menu, click the [Create group] button.
-
On the Create group page, enter the necessary group information and click [Create].
Category Description Organization The currently accessed organization (auto-filled) Group name Name of the group to be created
- Duplicate group names are not allowed within an organizationDescription (optional) Up to 100 characters allowed
Delete group
Org Admin can delete groups. When a group is deleted, all IAM roles granted through the group permissions are revoked.
For security reasons, the API authentication tokens of the group members expire immediately, and they are logged out of the KakaoCloud Console.
- Go to the KakaoCloud Console > Management > IAM.
- In the Groups menu, click the [More options] icon next to the group you want to delete and select Delete.
- In the Delete group pop-up window, enter
Delete group
and click [Delete].
Manage group members
Add members to a group
Org Admin can add users to a group.
-
Go to the KakaoCloud Console > Management > IAM.
-
In the Groups menu, select the group to which you want to add members and go to the details page.
-
In the Users tab, click the [Add users] button.
-
On the Add users page, enter the IAM user ID and click [Add].
- New accounts and service accounts that are not registered as IAM users cannot be added as group members.
Remove members from a group
Org Admin can remove specific users from a group. When a member is removed, all IAM roles granted through the group are revoked.
For security reasons, the API authentication tokens of removed members expire immediately, and they are logged out of the KakaoCloud Console.
However, IAM roles that are separately assigned to the user will not be affected.
- Go to the KakaoCloud Console > Management > IAM.
- In the Groups menu, select the group from which you want to remove members and go to the details page.
- In the Users tab, check the users you want to remove and click the [Remove] button.
- To remove multiple users at once, check their boxes and click [Remove].
- In the Remove user from group pop-up window, enter
Remove user from group
and click [Remove].
Manage group IAM permissions
Org Admin can assign organization or project roles to a specific group.
- Go to the KakaoCloud Console > Management > IAM.
- In the Groups menu, select the group to which you want to assign roles and go to the details page.
- In the IAM Roles tab, click the Organization/Project tab.
- Manage organization roles for group
- Manage project roles for group
In the Organization tab, you can view and manage organization roles assigned to the group.
- Click the [Edit roles] button to add or modify roles, then click [Edit].
- Click the [Remove all roles] button and confirm in the pop-up to remove all organization roles.
In the Project tab, you can view and manage project roles assigned to the group.
- Select a project, click the [Edit roles] button to add or modify roles, then click [Edit].
- Select a project, click the [Remove all roles] button and confirm in the pop-up to remove all project roles.
At least one role must be assigned when modifying organization or project roles.
To remove all roles, use the Remove all roles feature.
View certification
Org Admin can view IAM access keys and S3 access keys issued by users in the organization from the Certification menu.
- IAM access key
- S3 access key
IAM access key
-
Go to the KakaoCloud Console > Management > IAM.
-
In the Certification > IAM Access Key tab, view the list.
-
Check the [Expired access key] box to filter expired keys.
Item Description Creator ID of the user who issued the IAM access key Project name Project where the IAM access key was issued Name IAM access key name set by the user ID IAM access key ID value Expiration date Expiration date of the IAM access key -
Click the access key details icon to view additional information such as Project ID and Access key description.
S3 access key
-
Go to the KakaoCloud Console > Management > IAM.
-
In the Certification > S3 access key tab, view the list.
Item Description Creator ID of the user who issued the S3 access key Project name Project where the S3 access key was issued Name S3 access key name set by the user ID S3 access key ID value Creation date Date when the S3 access key was created -
Click the access key details icon to view additional information such as Project ID and S3 access key ID.