Modify user roles to add public cloud

Owned by MS (Unlicensed)
Feb 04, 2024
2 min read

To offer public cloud features, modify your user roles to add new privileges to enable the new features. These lists contain some example privileges to consider.

ALWAYS test your user roles in your own environment

Users and tenant administrator roles

The privileges to consider for users and tenant administrators are as follows:

  • Home

    • View bills

  • Virtual datacenters

    • Manage floating IPs (currently assigned to enterprise administrators)

    • Manage VPNs (currently assigned to enterprise administrators)

    • Manage classic firewalls (VCD)

    • Assign public IPs to VMs

    • Access public network tab

    • Manage public network elements

    • Assign external IPs to VMs (VCD)

    • Access external network tab (VCD)

  • Users

    • Manage provider credentials (if the customer will add their own public cloud account)

    • Manage virtual datacenter roles (if the customer will create read only users)

    • Access budgets section

    • Manage budgets

Platform administrator roles

If your platform administrators do not have cloud administrator roles, please check that they have all the appropriate privileges for public cloud, which may include the user list plus the following privileges:

  • Home

    • Manage bills

  • Infrastructure

    • Manage public cloud regions

    • Access infrastructure view and PCRs

    • View public cloud region details

  • Virtual datacenters

    • Manage default virtual datacenter firewall

    • Manage VDC default roles

  • Users

    • Manage enterprise properties

    • Manage virtual datacenter roles

    • Access user metadata (dashboards), Manage user metadata (dashboards), Access enterprise metadata (dashboards), Manage enterprise metadata (dashboards)

  • Pricing

    • View price factors, Manage price factors

  • Control

    • View enterprise hierarchy

 

 

Modify user roles to add public cloud

To modify user roles to add public cloud

  1. Go to Users → Roles

  2. To create the base for a public cloud reseller administrator role, select the ENTERPRISE_ADMIN role and click the copy clone button

  3. Add privileges for a public cloud reseller admin. For example, Allow user to switch enterprises, Manage bills, Manage key node enterprises, Manage enterprise properties, Access pricing view, Manage pricing, View price factors, Manage price factors, Access user metadata (dashboards), Manage user metadata (dashboards), Access enterprise metadata (dashboards), Manage enterprise metadata (dashboards)

  4. Click Save

  5. To create the base for a public cloud user, select the USER role and clone it.

  6. Add privileges for a public cloud user: View bills, Manage floating IPs, Manage firewalls, Manage load balancers

Copyright © 2006-2024, Abiquo Holdings SL. All rights reserved