Manage role
Roles provide differential access rights to users for managing and accessing organizations and projects. Roles are broadly divided into organizational-level and project-level, and multiple roles can be assigned to a user. For example, a user with the Org Admin role can also take on a specific project member role.
The role management described in this document is only available to users assigned the following IAM roles.
Manage organization roles
Organization roles include Org Admin, Billing Admin, Billing Manager, Billing Viewer, Trail Viewer, and Alert Center Organization Manager.
For billing-related roles, higher-level roles encompass all permissions of the lower-level roles. However, lower-level roles can still be added in conjunction with higher ones. For example, a user with the Billing Manager role (which includes Billing Viewer permissions) can still be explicitly assigned the Billing Viewer role.
The Organization Owner is the user who created the organization. This user is automatically assigned the Org Admin and Billing Admin roles.
You cannot assign the Organization Owner role through IAM. To change the Organization Owner, use the Transfer Organization Owner feature. The new owner will also be granted the Org Admin and Billing Admin roles.
Types of organization roles
Role | Description |
---|---|
Org Admin | Register/delete users, manage user roles, create/delete groups, create projects, etc. - Includes Org Reader permissions |
Org Reader | View organization/projects, view users and IAM roles |
Billing Admin | Manage billing and view invoices - Includes Billing Manager permissions |
Billing Manager | View estimated project costs and invoices - Includes Billing Viewer permissions |
Billing Viewer | View resource usage and estimated costs |
Trail Viewer | View organizational events in Cloud Trail |
Alert Center Org Manager | Register and view alarms for organization events in Alert Center |
Manage organization roles
An Org Admin can assign or remove organization roles for users.
- Go to KakaoCloud Console > Management > IAM.
- In the Users menu, select a user and click [Edit Organization Roles].
- In the role edit page, select roles to add or remove and click [Edit].
- In the user’s IAM Roles > Organization tab, confirm the updated role information.
Transfer organization owner
Only the current Organization Owner can transfer ownership via the KakaoCloud Console.
If the current owner leaves without transferring the role, contact the Helpdesk.
- Go to KakaoCloud Console > Management > IAM.
- In the Users list, find the user labeled
Owner
, then click [Transfer Ownership].
This button appears only for the current Organization Owner. - In the transfer popup, enter the user ID to whom ownership will be transferred and click [Transfer].
- Confirm that the ownership has been updated in the user list.
Manage project roles
Project roles define permissions for managing or accessing projects. Roles include Project Admin and Project Member.
Users must first be added as Project Members before roles can be assigned.
Managing project roles requires either the Org Admin or Project Admin role. The procedure differs depending on which role the user holds.
Project role types
Role | Description |
---|---|
Project Admin | Full access and control over all project resources and members |
Project Member | Access to all or specific assigned project resources |
Project Reader | Read-only access to assigned resources within the project |
Add project member and assign role
The steps to add users to a project vary depending on whether you are an Org Admin or Project Admin.
- If you are an Org Admin
- If you are a Project Admin
- Go to KakaoCloud Console > Management > IAM.
- In the Projects menu, select the target project.
- In the Users tab, click [Assign New Role].
- Enter the required information and click [Assign].
- Confirm the assigned role in Projects > Users tab.
- Go to KakaoCloud Console, and select the target project.
- From the dashboard, click Go to Project Management > Users.
- Click [Assign New Role].
- Enter the required information and click [Assign].
- Confirm the assigned role in Dashboard > Project Management > Users.
Field | Description |
---|---|
User | Enter the user’s ID (email address). - Must be a member of the organization |
Project Role | Select the role to assign - See IAM Roles for details |
Change project role
You can change the role of users already added to a project. The steps differ depending on the role you hold.
- If you are an Org Admin
- If you are a Project Admin
- Go to KakaoCloud Console > Management > IAM.
- In the Projects menu, select the target project.
- In the Users tab, select a user and click [Edit Role].
- Enter the new role information and click [Edit].
- Confirm the changes in the Projects > Users tab.
- Go to KakaoCloud Console, and select the target project.
- From the dashboard, go to Project Management > Users.
- Select a user and click [Edit Role].
- Enter the updated information and click [Edit].
- Confirm the changes in Dashboard > Project Management > Users.
Remove member from project
Removing a user from a project also removes their project role. They must be re-added to regain access. The process differs depending on whether you are an Org Admin or Project Admin.
- If you are an Org Admin
- If you are a Project Admin
- Go to KakaoCloud Console > Management > IAM.
- In the Projects menu, select the project.
- In the Users tab, select the user to remove and click [Remove User].
- In the confirmation popup, enter the required details and click [Remove].
- Confirm the user has been removed from the Projects > Users tab.
- Go to KakaoCloud Console, and select the target project.
- From the dashboard, go to Project Management > Users.
- Select the user to remove and click [Remove User].
- In the confirmation popup, enter the required details and click [Remove].
- Confirm the user has been removed from the Dashboard > Project Management > Users list.