Manage user and group
Manage user
Users are account units that can access the KakaoCloud Console. The user management features described in this document are available only to users with the following IAM roles.
Manage user by IAM role
Feature | Org Owner | Org Admin | Org Reader | Project Admin | Project Member | Project Reader |
---|---|---|---|---|---|---|
Register user | ✓ | |||||
View user information within organization | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ |
Delete user | ✓ |
View user list
Org Admin and Org Reader can view user information registered in the organization.
-
Go to KakaoCloud Console > Management > IAM.
-
In the Users menu, view the information of users registered in the organization.
Category Description ID User login ID (email address) Name User name Nickname Nickname used within the organization Number of organization roles Number of assigned organization roles Number of groups Number of groups the user belongs to Last login Last console login date and time Registration date Date and time the user account was registered
Register user
Only registered users can access the KakaoCloud Console and use APIs. Only Org Admin can register users.
Accounts integrated with external IdPs may have limitations in being registered as KakaoCloud users.
-
Go to KakaoCloud Console > Management > IAM.
-
Click the [Register user] button on the User menu and select General register or Quick register.
-
Enter information and click the [Register] button.
- To register multiple people at once, use Quick register to add up to 100 people at a time.
-
Verify the registered user on the User menu.
- An invitation and password registration guide email will be sent to the email address registered as a KakaoCloud user. Users must set their initial password within 7 days to log into the console.
- If the invitation email is deleted or expires, click the user in the user list and click Resend invitation email in the Account tab.
View user details within organization
Org Admin and Org Reader can view a user's account information, role details, and access key information in the user details view.
Only organizations that have signed up directly with KakaoCloud can check account statuses. If a customer's system is integrated with KakaoCloud accounts, account statuses will not be provided.
-
Go to KakaoCloud Console > Management > IAM.
-
In the Users menu, select a user to view detailed information.
-
In the Account information tab, review the user's details.
Category Description Organization ID Organization ID to which the user belongs Name (Nickname) User's name (nickname used within the organization) User UUID Unique user ID within the organization Last login Date and time of the last console login Contact email address Verified email address Mobile phone number User's mobile phone number User registration Date and time the user account was registered Account status KakaoCloud account status
- 🟢 Active: The initial KakaoCloud account password has been set, and the user can log in to the console.
- 🟡 Pending invitation: The initial KakaoCloud account password has not been set, and the user cannot log in to the console.
- ⚪️ Unknown: The user does not have permission for the KakaoCloud account or IAM cannot verify the status.
Manage user IAM roles
Org Admin can view and manage a user's organization and project roles in the IAM roles tab.
-
Go to KakaoCloud Console > Management > IAM.
-
In the Users menu, select the user whose details you want to view.
-
Click the IAM roles tab and select either the Organization or Project tab.
- Manage user organization roles
- Manage user project roles
In the Organization tab, you can view and manage the organization roles assigned to the user.
- Click the Edit role button to add or modify organization roles, then click [Edit].
- Click the Remove roles in bulk button, then confirm removal by clicking [Remove] in the popup window.
-
In the Project tab, you can view and manage the project roles assigned to the user.
- Select the project where you want to add or modify a role, click the [Edit role] button, adjust the role, and click [Edit].
- To remove roles in bulk, select the project, click the [Remove roles in bulk] button, then confirm by clicking [Remove] in the popup window.
At least one role must exist when modifying organization or project roles.
To remove all roles, use the Remove all roles feature.
Manage user groups
In the Groups tab, you can view and manage the list of groups to which a user belongs.
- Click the Add user to group button to assign a user to a group.
- Click Remove or the trash icon to remove a user from a group.
View user certification
Org Admin can view credential information for organization user accounts.
Kakao Cloud provides IAM access keys and S3 access keys, and detailed information for each key can be checked in the console.
- IAM access key
- S3 access key
IAM access key
-
View IAM access key information issued by the user in the IAM access key tab.
-
Check the IAM access key information issued by the user.
Category Description Project name Name of the project where the IAM access key was issued Name IAM access key name set by the user ID IAM access key ID value Expiration date IAM access key expiration date
S3 access key
-
View S3 access key information issued by the user in the S3 access key tab.
-
Check the S3 access key information issued by the user.
Category Description Project name Name of the project where the S3 access key was issued Name S3 access key name set by the user ID S3 access key ID value Creation date S3 access key creation date
Delete user
Org Admin can delete users who are no longer part of the organization due to reasons such as resignation.
For information on removing specific users from a project, see Remove member from project.
When a user is deleted, access to the Kakao Cloud console is immediately restricted. All information associated with the user account is permanently deleted and cannot be restored.
- Go to the Kakao Cloud Console > Management > IAM menu.
- In the Users menu, select the [More options] icon next to the user you want to delete and choose Delete user.
- In the pop-up window, enter
Delete user from organization
and click [Delete].
Create and manage groups
A group is a collection of users who share specific roles. Groups allow for assigning and removing roles to multiple users at once.
The following IAM roles are required to manage groups.
Group management by IAM role
Feature | Org Admin | Org Reader | Project Admin | Project Member | Project Reader |
---|---|---|---|---|---|
Create group | ✓ | ||||
Delete group | ✓ | ||||
Add group members | ✓ | ||||
Remove group members | ✓ | ||||
View group members | ✓ | ✓ | |||
Add group permissions | ✓ | ||||
Remove group permissions | ✓ | ||||
View group permissions | ✓ | ✓ |
Create group
Org Admin can create groups. Users can be added as members of the created group, and organization or project roles can be assigned for IAM role management.
-
Go to the Kakao Cloud Console > Management > IAM menu.
-
In the Groups menu, click the [Create group] button.
-
Enter the required group information in the Create group page and click [Create].
Category Description Organization The currently accessed organization (auto-filled) Group name Name of the group to be created
- Duplicate group names are not allowed within an organizationDescription (optional) Up to 100 characters
Delete group
Org Admin can delete groups. When a group is deleted, all IAM roles assigned through the group permissions are revoked. For security reasons, the API authentication token of the group members expires immediately, and they are logged out of the Kakao Cloud Console.
- Go to the Kakao Cloud Console > Management > IAM menu.
- In the Groups menu, select the [More options] icon next to the group you want to delete and choose Delete.
- In the Delete group pop-up window, enter
Delete group
and click [Delete].
Manage group members
Add members to a group
Org Admin can add users to a group.
-
Go to the Kakao Cloud Console > Management > IAM menu.
-
In the Groups menu, select the group to which you want to add members and go to the details page.
-
In the Users tab, click the [Add users] button.
-
Enter the IAM user ID in the Add users page and click [Add].
- New accounts and service accounts not registered as IAM users cannot be added as group members.
Remove members from a group
Org Admin can remove specific members from a group. When a group member is removed, all IAM roles assigned through the group are revoked. For security reasons, the API authentication token of the removed member expires immediately, and they are logged out of the Kakao Cloud Console. However, IAM roles separately assigned to the user remain unaffected.
- Go to the Kakao Cloud Console > Management > IAM menu.
- In the Groups menu, select the group from which you want to remove members and go to the details page.
- In the Users tab, select the users you want to remove and click [Remove].
- To remove multiple users at once, check the users' boxes and click [Remove].
- In the Remove user from group pop-up window, enter
Remove user from group
and click [Remove].
Manage group IAM permissions
Org Admin can add organization or project roles to a specific group.
- Go to the Kakao Cloud Console > Management > IAM menu.
- In the Groups menu, select the group to which you want to add permissions and go to the details page.
- Click the IAM Roles tab and select the Organization/Project tab.
- Manage organization roles for groups
- Manage project roles for groups
In the Organization tab, you can view and manage organization roles assigned to a group.
- Click the [Edit roles] button to add or modify organization roles, then click [Edit].
- Click the [Remove all roles] button to remove all organization roles, then confirm in the pop-up window.
In the Project tab, you can view and manage project roles assigned to a group.
- Select the project where you want to add or modify roles, then click the [Edit roles] button, make changes, and click [Edit].
- Select the project where you want to remove roles, then click the [Remove all roles] button and confirm in the pop-up window.
At least one role must be assigned when editing organization/project roles. To remove all roles, use the Remove all roles function.
View certification
Org Admin can view IAM access keys and S3 access keys issued by users in the organization from the certification menu.
- IAM access key
- S3 access key
IAM access key
-
Go to Kakao Cloud Console > Management > IAM menu.
-
Navigate to Certification > IAM access key tab to view the list.
-
Select the Expired access key checkbox to filter expired accounts.
Item Description Creator User ID who issued the IAM access key Project name Project name where the IAM access key was issued Name IAM access key name set by the user ID IAM access key ID value Expiration date IAM access key expiration date -
Click the IAM access key details icon to view additional information such as Project ID and Access key description.
S3 access key
-
Go to Kakao Cloud Console > Management > IAM menu.
-
Navigate to Certification > S3 access key tab to view the list.
Item Description Creator User ID who issued the S3 access key Project name Project name where the S3 access key was issued Name S3 access key name set by the user ID S3 access key ID value Creation date S3 access key creation date -
Click the S3 access key details icon to view additional information such as Project ID and S3 access key ID.