Skip to main content

Manage role

Roles provide differential access rights to users for managing and accessing organizations and projects. Roles are broadly divided into organizational-level and project-level, and multiple roles can be assigned to a user. For example, a user with the Org Admin role can also take on a specific project member role.

The role management described in this document is only available to users assigned the following IAM roles.

Manage organization roles

Organization roles include Org Admin, Billing Admin, Billing Manager, Billing Viewer, Trail Viewer, and Alert Center Organization Manager.
For billing-related roles, higher-level roles encompass all permissions of the lower-level roles. However, lower-level roles can still be added in conjunction with higher ones. For example, a user with the Billing Manager role (which includes Billing Viewer permissions) can still be explicitly assigned the Billing Viewer role.

info

The Organization Owner is the user who created the organization. This user is automatically assigned the Org Admin and Billing Admin roles.
You cannot assign the Organization Owner role through IAM. To change the Organization Owner, use the Transfer Organization Owner feature. The new owner will also be granted the Org Admin and Billing Admin roles.

Types of organization roles

RoleDescription
Org AdminRegister/delete users, manage user roles, create/delete groups, create projects, etc.
- Includes Org Reader permissions
Org ReaderView organization/projects, view users and IAM roles
Billing AdminManage billing and view invoices
- Includes Billing Manager permissions
Billing ManagerView estimated project costs and invoices
- Includes Billing Viewer permissions
Billing ViewerView resource usage and estimated costs
Trail ViewerView organizational events in Cloud Trail
Alert Center Org ManagerRegister and view alarms for organization events in Alert Center

Manage organization roles

An Org Admin can assign or remove organization roles for users.

  1. Go to KakaoCloud Console > Management > IAM.
  2. In the Users menu, select a user and click [Edit Organization Roles].
  3. In the role edit page, select roles to add or remove and click [Edit].
  4. In the user’s IAM Roles > Organization tab, confirm the updated role information.

Transfer organization owner

info

Only the current Organization Owner can transfer ownership via the KakaoCloud Console.
If the current owner leaves without transferring the role, contact the Helpdesk.

  1. Go to KakaoCloud Console > Management > IAM.
  2. In the Users list, find the user labeled Owner, then click [Transfer Ownership].
    This button appears only for the current Organization Owner.
  3. In the transfer popup, enter the user ID to whom ownership will be transferred and click [Transfer].
  4. Confirm that the ownership has been updated in the user list.

Manage project roles

Project roles define permissions for managing or accessing projects. Roles include Project Admin and Project Member.
Users must first be added as Project Members before roles can be assigned.

Permissions

Managing project roles requires either the Org Admin or Project Admin role. The procedure differs depending on which role the user holds.

Project role types

RoleDescription
Project AdminFull access and control over all project resources and members
Project MemberAccess to all or specific assigned project resources
Project ReaderRead-only access to assigned resources within the project

Add project member and assign role

The steps to add users to a project vary depending on whether you are an Org Admin or Project Admin.

  1. Go to KakaoCloud Console > Management > IAM.
  2. In the Projects menu, select the target project.
  3. In the Users tab, click [Assign New Role].
  4. Enter the required information and click [Assign].
  5. Confirm the assigned role in Projects > Users tab.

Change project role

You can change the role of users already added to a project. The steps differ depending on the role you hold.

  1. Go to KakaoCloud Console > Management > IAM.
  2. In the Projects menu, select the target project.
  3. In the Users tab, select a user and click [Edit Role].
  4. Enter the new role information and click [Edit].
  5. Confirm the changes in the Projects > Users tab.

Remove member from project

Removing a user from a project also removes their project role. They must be re-added to regain access. The process differs depending on whether you are an Org Admin or Project Admin.

  1. Go to KakaoCloud Console > Management > IAM.
  2. In the Projects menu, select the project.
  3. In the Users tab, select the user to remove and click [Remove User].
  4. In the confirmation popup, enter the required details and click [Remove].
  5. Confirm the user has been removed from the Projects > Users tab.