...
Panel | ||
---|---|---|
| ||
This page describes how administrators can control user access to the platform. For details of how manage users, see Manage users for tenant admin or Manage users |
...
Put a user on the notifications list
An enterprise manager user will receive notification emails from the cloud administrators about physical machines and their enterprise's VMs on the platform.
...
Assign the user a role with the "
Define enterprise manager privilege
". See Manage Rolesroles. You can edit the user's existing role or assign a new role with this privilege.
...
By default, users can access the platform from any network address. To restrict access, when the administrator creates or edits a user, they can allow a set of network addresses.
Panel | ||
---|---|---|
| ||
Privileges: Manage allowed user CIDRs |
To only allow access from a set of network addresses for a specific user via console and API:
Go to Users →
Edit a user → and go to Advanced
Enter For the Allowed CIDRs to specify , enter the network addresses that the user can access the platform from, using CIDR notation.
The user's Allowed CIDRs will have priority over the allowed CIDRs that are inherited from the user's role and/or scope
The inherited CIDRs will only display if the user has no Allowed CIDRs
In Using the API, you can add a comma delimited separated list of addresses in CIDR format
To restrict access of more than one user at a time, set role and/or scope CIDRs.
Screenshot: Create a scope with Allowed CIDRs.
...
Screenshot: Create a role with Allowed CIDRs
...
...
...
Disable access to users view
...
To display the Enterprises list on the left side of Users view, your user role must have the privilege to Manage users of all enterprises
. The user can select an enterprise to edit its users. By default, only the Cloud administrator role has this privilege.
...
To switch directly to different enterprises your user role must have the Allow user to switch enterprise
privilege. You can select the enterprise name and click the Switch enterprises button, as in Home view.
You can view and manage users of the enterprises in your user scope. And you can share resources with tenants in scopes beneath your scope.
...
A Tenant admin role might not have the privilege to Manage users of other enterprises
. In this case, you the user can only display and manage users of your their own enterprise, or the enterprise they are logged into.
...