Manage user and group

Manage user

Users are account units that can access the KakaoCloud Console. The user management features described in this document are available only to users with the following IAM roles.

Manage user by IAM role

Feature	Org Owner	Org Admin	Org Reader	Project Admin	Project Member	Project Reader
Register user		✓
View user information within organization	✓	✓	✓	✓	✓	✓
Delete user		✓

View user list

Org Admin and Org Reader can view user information registered in the organization.

1. Go to KakaoCloud Console > Management > IAM.

2. In the Users menu, view the information of users registered in the organization.

   Category	Description
   ID	User login ID (email address)
   Name	User name
   Nickname	Nickname used within the organization
   Number of organization roles	Number of assigned organization roles
   Number of groups	Number of groups the user belongs to
   Last login	Last console login date and time
   Registration date	Date and time the user account was registered

Register user

Only registered users can access the KakaoCloud Console and use APIs. Only Org Admin can register users.

info

Accounts integrated with external IdPs may have limitations in being registered as KakaoCloud users.

1. Go to KakaoCloud Console > Management > IAM.

2. Click the [Register user] button on the User menu and select General register or Quick register.

3. Enter information and click the [Register] button.

   • To register multiple people at once, use Quick register to add up to 100 people at a time.

4. Verify the registered user on the User menu.

   • An invitation and password registration guide email will be sent to the email address registered as a KakaoCloud user. Users must set their initial password within 7 days to log into the console.
   • If the invitation email is deleted or expires, click the user in the user list and click Resend invitation email in the Account tab.

View user details within organization

Org Admin and Org Reader can view a user's account information, role details, and access key information in the user details view.

info

Only organizations that have signed up directly with KakaoCloud can check account statuses. If a customer's system is integrated with KakaoCloud accounts, account statuses will not be provided.

1. Go to KakaoCloud Console > Management > IAM.

2. In the Users menu, select a user to view detailed information.

3. In the Account information tab, review the user's details.

   Category	Description
   Organization ID	Organization ID to which the user belongs
   Name (Nickname)	User's name (nickname used within the organization)
   User UUID	Unique user ID within the organization
   Last login	Date and time of the last console login
   Contact email address	Verified email address
   Mobile phone number	User's mobile phone number
   User registration	Date and time the user account was registered
   Account status	KakaoCloud account status - 🟢 Active: The initial KakaoCloud account password has been set, and the user can log in to the console. - 🟡 Pending invitation: The initial KakaoCloud account password has not been set, and the user cannot log in to the console. - ⚪️ Unknown: The user does not have permission for the KakaoCloud account or IAM cannot verify the status.

Manage user IAM roles

Org Admin can view and manage a user's organization and project roles in the IAM roles tab.

1. Go to KakaoCloud Console > Management > IAM.

2. In the Users menu, select the user whose details you want to view.

3. Click the IAM roles tab and select either the Organization or Project tab.

   Manage user organization roles

   In the Organization tab, you can view and manage the organization roles assigned to the user.

   4. Click the Edit role button to add or modify organization roles, then click [Edit].
   5. Click the Remove roles in bulk button, then confirm removal by clicking [Remove] in the popup window.

   Manage user project roles

   • In the Project tab, you can view and manage the project roles assigned to the user.

   4. Select the project where you want to add or modify a role, click the [Edit role] button, adjust the role, and click [Edit].
   5. To remove roles in bulk, select the project, click the [Remove roles in bulk] button, then confirm by clicking [Remove] in the popup window.

info

At least one role must exist when modifying organization or project roles.
To remove all roles, use the Remove all roles feature.

Manage user groups

In the Groups tab, you can view and manage the list of groups to which a user belongs.

1. Click the Add user to group button to assign a user to a group.
2. Click Remove or the trash icon to remove a user from a group.

View user certification

Org Admin can view credential information for organization user accounts.
Kakao Cloud provides IAM access keys and S3 access keys, and detailed information for each key can be checked in the console.

IAM access key

IAM access key

• View IAM access key information issued by the user in the IAM access key tab.

• Check the IAM access key information issued by the user.

  Category	Description
  Project name	Name of the project where the IAM access key was issued
  Name	IAM access key name set by the user
  ID	IAM access key ID value
  Expiration date	IAM access key expiration date

S3 access key

S3 access key

• View S3 access key information issued by the user in the S3 access key tab.

• Check the S3 access key information issued by the user.

  Category	Description
  Project name	Name of the project where the S3 access key was issued
  Name	S3 access key name set by the user
  ID	S3 access key ID value
  Creation date	S3 access key creation date

Delete user

Org Admin can delete users who are no longer part of the organization due to reasons such as resignation.

info

For information on removing specific users from a project, see Remove member from project.

caution

When a user is deleted, access to the Kakao Cloud console is immediately restricted. All information associated with the user account is permanently deleted and cannot be restored.

1. Go to the Kakao Cloud Console > Management > IAM menu.
2. In the Users menu, select the [More options] icon next to the user you want to delete and choose Delete user.
3. In the pop-up window, enter Delete user from organization and click [Delete].

Create and manage groups

A group is a collection of users who share specific roles. Groups allow for assigning and removing roles to multiple users at once.
The following IAM roles are required to manage groups.

Group management by IAM role

Feature	Org Admin	Org Reader	Project Admin	Project Member	Project Reader
Create group	✓
Delete group	✓
Add group members	✓
Remove group members	✓
View group members	✓	✓
Add group permissions	✓
Remove group permissions	✓
View group permissions	✓	✓

Create group

Org Admin can create groups. Users can be added as members of the created group, and organization or project roles can be assigned for IAM role management.

1. Go to the Kakao Cloud Console > Management > IAM menu.

2. In the Groups menu, click the [Create group] button.

3. Enter the required group information in the Create group page and click [Create].

   Category	Description
   Organization	The currently accessed organization (auto-filled)
   Group name	Name of the group to be created - Duplicate group names are not allowed within an organization
   Description (optional)	Up to 100 characters

Delete group

Org Admin can delete groups. When a group is deleted, all IAM roles assigned through the group permissions are revoked. For security reasons, the API authentication token of the group members expires immediately, and they are logged out of the Kakao Cloud Console.

1. Go to the Kakao Cloud Console > Management > IAM menu.
2. In the Groups menu, select the [More options] icon next to the group you want to delete and choose Delete.
3. In the Delete group pop-up window, enter Delete group and click [Delete].

Manage group members

Add members to a group

Org Admin can add users to a group.

1. Go to the Kakao Cloud Console > Management > IAM menu.

2. In the Groups menu, select the group to which you want to add members and go to the details page.

3. In the Users tab, click the [Add users] button.

4. Enter the IAM user ID in the Add users page and click [Add].

   • New accounts and service accounts not registered as IAM users cannot be added as group members.

Remove members from a group

Org Admin can remove specific members from a group. When a group member is removed, all IAM roles assigned through the group are revoked. For security reasons, the API authentication token of the removed member expires immediately, and they are logged out of the Kakao Cloud Console. However, IAM roles separately assigned to the user remain unaffected.

1. Go to the Kakao Cloud Console > Management > IAM menu.
2. In the Groups menu, select the group from which you want to remove members and go to the details page.
3. In the Users tab, select the users you want to remove and click [Remove].
   • To remove multiple users at once, check the users' boxes and click [Remove].
4. In the Remove user from group pop-up window, enter Remove user from group and click [Remove].

Manage group IAM permissions

Org Admin can add organization or project roles to a specific group.

1. Go to the Kakao Cloud Console > Management > IAM menu.
2. In the Groups menu, select the group to which you want to add permissions and go to the details page.
3. Click the IAM Roles tab and select the Organization/Project tab.

Manage organization roles for groups

In the Organization tab, you can view and manage organization roles assigned to a group.

4. Click the [Edit roles] button to add or modify organization roles, then click [Edit].
5. Click the [Remove all roles] button to remove all organization roles, then confirm in the pop-up window.

Manage project roles for groups

In the Project tab, you can view and manage project roles assigned to a group.

4. Select the project where you want to add or modify roles, then click the [Edit roles] button, make changes, and click [Edit].
5. Select the project where you want to remove roles, then click the [Remove all roles] button and confirm in the pop-up window.

info

At least one role must be assigned when editing organization/project roles. To remove all roles, use the Remove all roles function.

View certification

Org Admin can view IAM access keys and S3 access keys issued by users in the organization from the certification menu.

IAM access key

IAM access key

1. Go to Kakao Cloud Console > Management > IAM menu.

2. Navigate to Certification > IAM access key tab to view the list.

3. Select the Expired access key checkbox to filter expired accounts.

   Item	Description
   Creator	User ID who issued the IAM access key
   Project name	Project name where the IAM access key was issued
   Name	IAM access key name set by the user
   ID	IAM access key ID value
   Expiration date	IAM access key expiration date

4. Click the IAM access key details icon to view additional information such as Project ID and Access key description.

S3 access key

S3 access key

1. Go to Kakao Cloud Console > Management > IAM menu.

2. Navigate to Certification > S3 access key tab to view the list.

   Item	Description
   Creator	User ID who issued the S3 access key
   Project name	Project name where the S3 access key was issued
   Name	S3 access key name set by the user
   ID	S3 access key ID value
   Creation date	S3 access key creation date

3. Click the S3 access key details icon to view additional information such as Project ID and S3 access key ID.