Page Comparison

Each cloud user has a role to define how they can work with resources. Each user role has a set of privileges to allow access to different cloud features.

There are four default user roles in the system: Cloud administrator, Enterprise administrator, User, and Enterprise viewer. See Default roles. You can clone the default roles and modify them to create your own roles.

The Privileges page lists all the privileges and shows the default roles that they belong to. 
The default roles are global roles so they are available to all enterprises but it is also possible to create a role that belongs to a single enterprise.

Privileges are generally independent. For example, if your user role does not have the Access Infrastructure view privilege, the UI will not display the Infrastructure icon. But if your role has the Manage datacenters and View datacenter details privileges, you can use the API to access the datacenter infrastructure that you cannot access in the UI.

You can specify directory groups for user roles. When users log in, the platform will automatically create users and assign the matching roles to them. You can use LDAP, Active Directory, OpenID Connect, and SAML.

In addition to user roles, each user also has an administration scope to define the resources that a user can view, access, and administer. See Manage scopes. And each user's enterprise has a list of allowed datacenters and public cloud regions that users can work in.

For details of the Abiquo concepts of enterprises and users, see Tenants and users in the Abiquo Walkthrough. 

For information about creating a reseller, see https://abiquo.atlassian.net/wiki/spaces/doc/pages/311361611/Abiquo+cloud+reseller+guide#Create-resellers.

For information about creating a tenant administrator, see Create a tenant administrator user.