Manage user and group

Manage user

Users are account units that can access the KakaoCloud Console. The user management features described in this document are available only to users with the following IAM roles.

Manage user by IAM role

Feature	Org Admin	Org Reader	Project Admin	Project Member	Project Reader
Register user	✓
View user information within organization	✓	✓
Delete user	✓

View user list

Org Admin and Org Reader can view user information registered in the organization.

1. Go to the KakaoCloud Console > Management > IAM.

2. In the Users menu, check the list of users registered in the organization.

   Category	Description
   ID	User login ID (email address)
   Name	User name
   Nickname	Nickname used within the organization
   Number of organization roles	Number of assigned organization roles
   Number of groups	Number of groups the user belongs to
   Last login	Date and time of the last console login
   Registration date	Date and time the user account was registered

Register user

Org Admin can register and manage users in the console.

info

Accounts integrated with external IdPs may have limitations in being registered as KakaoCloud users.

1. Go to the KakaoCloud Console > Management > IAM.

2. In the Users menu, click the [Register user] button and select either General register or Bulk register.

3. On the Register user page, enter the required information and click the [Register] button.

   • Using Bulk register, you can register up to 100 users at once.

4. Check the registered users in the Users menu.

5. Registered users will receive an organization invitation and password setup instructions by email.

   • Users must set their password within 7 days after receiving the email to log in to the console.
   • If the invitation email is deleted or expired, go to the user list, click the user, and click Resend invitation email from the Account tab.

View user details within organization

Org Admin and Org Reader can view a user's account details, roles, and access key information from the user detail page.

info

Only organizations that have signed up directly with KakaoCloud can check account statuses. Accounts integrated with customer systems cannot be checked.

1. Go to the KakaoCloud Console > Management > IAM.

2. In the Users menu, select the user you want to view.

3. In the Account Information tab, check the user’s detailed information.

   Category	Description
   Organization ID	Organization ID the user belongs to
   Name (Nickname)	User’s name (nickname used in the organization)
   User UUID	Unique user ID within the organization
   Last login	Last console login time
   Contact email address	Verified email address
   Mobile phone number	User’s mobile number
   User registration date	Date when the user account was registered
   Account status	KakaoCloud account status - 🟢 Active: Initial password is set and the user can log in to the console. - 🟡 Pending invitation: Initial password is not set, and the user cannot log in. - ⚪️ Unknown: The user does not have KakaoCloud account permissions or IAM cannot verify the status.

Manage user IAM roles

Org Admin can view and manage a user’s organization and project roles in the IAM roles tab.

1. Go to the KakaoCloud Console > Management > IAM.
2. In the Users menu, select the user whose details you want to view.
3. Click the IAM Roles tab and select the Organization/Project tab.

Manage user organization roles

• In the Organization tab, you can view and manage the organization roles assigned to the user.

4. Click the [Edit roles] button to add or modify the organization roles, then click [Edit].
5. Click the [Remove roles in bulk] button, then click [Remove] in the popup to delete all assigned organization roles.

Manage user project roles

• In the Project tab, you can view and manage the project roles assigned to the user.

4. Select the project in which you want to add or modify roles, click the [Edit roles] button, then click [Edit] after adjusting the roles.
5. To remove all roles in a project, select the project, click the [Remove roles in bulk] button, and then click [Remove] in the popup.

info

At least one role must be assigned when modifying organization/project roles. To remove all roles, use the Remove roles in bulk feature.

다음은 요청하신 "사용자 그룹 관리" 및 "사용자 자격 증명 조회" 섹션의 영어 번역입니다:

Manage user groups

Org Admin can view and manage the list of groups to which a user belongs in the Groups tab.

1. Go to the KakaoCloud Console > Management > IAM.
2. In the Users menu, select the user whose details you want to view.
3. In the user details, click the Groups tab.
4. Click the Add user to group button to assign the user to a group.
5. Click Remove or the trash icon to remove the user from a group.

View user certification

Org Admin can view the credential information of users within the organization.
KakaoCloud provides IAM access keys and S3 access keys, and you can check the details for each key in the console.

IAM access key

IAM access key

• View IAM access key information issued by the user in the IAM access key tab.

• Check the details of the IAM access keys issued by the user.

  Category	Description
  Project name	Name of the project where the IAM access key was issued
  Name	IAM access key name set by the user
  ID	IAM access key ID value
  Expiration date	IAM access key expiration date

S3 access key

S3 access key

• View S3 access key information issued by the user in the S3 access key tab.

• Check the details of the S3 access keys issued by the user.

  Category	Description
  Project name	Name of the project where the S3 access key was issued
  Name	S3 access key name set by the user
  ID	S3 access key ID value
  Creation date	S3 access key creation date

Delete user

Org Admin can delete users who are no longer part of the organization due to reasons such as resignation, preventing them from accessing resources.

info

To remove a specific user's permissions from a project, refer to Remove member from project.

caution

Once a user is deleted, their access to the KakaoCloud Console is immediately revoked. All account information is permanently deleted and cannot be restored.

1. Go to the KakaoCloud Console > Management > IAM.
2. In the Users menu, click the [More options] icon for the user you want to delete and select Delete user.
3. In the pop-up window, enter Delete user from organization and click [Delete].

Create and manage group

A group is a collection of users who share a specific set of roles. You can assign or remove IAM roles to users collectively through groups.
The group management features described in this document are only available to users with the following IAM roles:

Group management by IAM role

Feature	Org Admin	Org Reader	Project Admin	Project Member	Project Reader
Create group	✓
Delete group	✓
Add group members	✓
Remove group members	✓
View group members	✓	✓
Add group permissions	✓
Remove group permissions	✓
View group permissions	✓	✓

Create group

Org Admin can create groups. After creating a group, you can register users as members and assign organization or project roles to collectively manage IAM roles.

1. Go to the KakaoCloud Console > Management > IAM.

2. In the Groups menu, click the [Create group] button.

3. On the Create group page, enter the necessary group information and click [Create].

   Category	Description
   Organization	The currently accessed organization (auto-filled)
   Group name	Name of the group to be created - Duplicate group names are not allowed within an organization
   Description (optional)	Up to 100 characters allowed

Delete group

Org Admin can delete groups. When a group is deleted, all IAM roles granted through the group permissions are revoked.
For security reasons, the API authentication tokens of the group members expire immediately, and they are logged out of the KakaoCloud Console.

1. Go to the KakaoCloud Console > Management > IAM.
2. In the Groups menu, click the [More options] icon next to the group you want to delete and select Delete.
3. In the Delete group pop-up window, enter Delete group and click [Delete].

Manage group members

Add members to a group

Org Admin can add users to a group.

1. Go to the KakaoCloud Console > Management > IAM.

2. In the Groups menu, select the group to which you want to add members and go to the details page.

3. In the Users tab, click the [Add users] button.

4. On the Add users page, enter the IAM user ID and click [Add].

   • New accounts and service accounts that are not registered as IAM users cannot be added as group members.

Remove members from a group

Org Admin can remove specific users from a group. When a member is removed, all IAM roles granted through the group are revoked.
For security reasons, the API authentication tokens of removed members expire immediately, and they are logged out of the KakaoCloud Console.
However, IAM roles that are separately assigned to the user will not be affected.

1. Go to the KakaoCloud Console > Management > IAM.
2. In the Groups menu, select the group from which you want to remove members and go to the details page.
3. In the Users tab, check the users you want to remove and click the [Remove] button.
   • To remove multiple users at once, check their boxes and click [Remove].
4. In the Remove user from group pop-up window, enter Remove user from group and click [Remove].

Manage group IAM permissions

Org Admin can assign organization or project roles to a specific group.

1. Go to the KakaoCloud Console > Management > IAM.
2. In the Groups menu, select the group to which you want to assign roles and go to the details page.
3. In the IAM Roles tab, click the Organization/Project tab.

Manage organization roles for group

In the Organization tab, you can view and manage organization roles assigned to the group.

4. Click the [Edit roles] button to add or modify roles, then click [Edit].
5. Click the [Remove all roles] button and confirm in the pop-up to remove all organization roles.

Manage project roles for group

In the Project tab, you can view and manage project roles assigned to the group.

4. Select a project, click the [Edit roles] button to add or modify roles, then click [Edit].
5. Select a project, click the [Remove all roles] button and confirm in the pop-up to remove all project roles.

info

At least one role must be assigned when modifying organization or project roles.
To remove all roles, use the Remove all roles feature.

View certification

Org Admin can view IAM access keys and S3 access keys issued by users in the organization from the Certification menu.

IAM access key

IAM access key

1. Go to the KakaoCloud Console > Management > IAM.

2. In the Certification > IAM Access Key tab, view the list.

3. Check the [Expired access key] box to filter expired keys.

   Item	Description
   Creator	ID of the user who issued the IAM access key
   Project name	Project where the IAM access key was issued
   Name	IAM access key name set by the user
   ID	IAM access key ID value
   Expiration date	Expiration date of the IAM access key

4. Click the access key details icon to view additional information such as Project ID and Access key description.

S3 access key

S3 access key

1. Go to the KakaoCloud Console > Management > IAM.

2. In the Certification > S3 access key tab, view the list.

   Item	Description
   Creator	ID of the user who issued the S3 access key
   Project name	Project where the S3 access key was issued
   Name	S3 access key name set by the user
   ID	S3 access key ID value
   Creation date	Date when the S3 access key was created

3. Click the access key details icon to view additional information such as Project ID and S3 access key ID.