Identity and Access Management

Managing Users

A user is assigned to one or more groups and inherits the policies assigned to each of these groups. In addition, a user may be assigned policies directly.

Creating a User

You can create a new user and assign them to one or more groups, and optionally assign them direct policies. The user will receive an email invitation. If they do not receive the invitation, ask the user to check their junk mail.

To create a user:

1. Click MORE.
2. Select IAM.
3. In the Users tab, click NEW USER.
4. Complete the fields.
EMAIL: The user email.
NAME: The username.
GROUPS: Select at least one group and optionally add more groups.
POLICIES (optional): Select one or more policies.
5. Click INVITE. The user is added to the Pending Invites list. An email invitation is sent to the new user. Once the user accepts the invitation, they appear in the Approved Users list.

Editing a User

You can edit a user and add or remove groups and direct policies.

To edit a user:

1. Click MORE.
2. Select IAM.
3. In the Users tab, select a user.
4. To add a group, click ADD GROUP, select a group and then click APPLY. The associated policies are added to the Policies area.
5. To delete a group, click in the group row.
6. To add a direct policy, click ADD POLICY, select a policy and then click APPLY.
7. To delete a policy, in the policy row.

Adding Groups or Policies to Multiple Users

You can add groups or policies to multiple users.

To add groups or policies to user:

1. Click MORE.
2. Select IAM.
3. In the Users tab, select the required users.
4. Click ADD TO GROUPS, select a group (or groups) and then click APPLY.
5. Click ADD POLICIES, select a policy (or policies) and then click APPLY.

Deleting Users

You can delete one or more users.

To delete users:

1. Click MORE.
2. Select IAM.
3. In the Users tab, select the required users.
4. Click DELETE. A confirmation message appears.
5. To delete the users, click YES.

Managing Groups

A group may have one or more policies assigned to it. There are three default groups and policies. You can also add additional groups and policies.

Group

Policy

Description

Administrators

Administrator Access

Provides full access to Upsolver resources.

Editors

Editor Access

Provides full access to Upsolver resources but managing users, policies and organization settings.

Viewers

Read Only Access

Provides read-only access to Upsolver resources.

Creating a Group

Once you have created a group, you can add users and policies.

To create a group:

1. Click MORE.
2. Select IAM.
3. In the Groups tab, click NEW GROUP.
4. Enter the group NAME.
5. Click CREATE. The new group is added.
6. Click to edit the group.
7. Click ADD USER, select a use (or users) and then click APPLY.
8. Click ADD POLICY, select a policy (or policies) and then click APPLY.

Editing a Group

You can add users and policies to an existing group.

To create a group:

1. Click MORE.
2. Click to edit the group.
3. Click ADD USER, select a use (or users) and then click APPLY.
4. Click ADD POLICY, select a policy (or policies) and then click APPLY.

Deleting a Group

You can delete a group.

To delete a group:

1. Click MORE.
2. Select IAM.
3. In the Groups tab, click in the group row.
4. Click DELETE. A confirmation message appears.
5. To delete the group, click YES.

Managing Policies

Creating a Policy

You can create a new policy that includes one or more statements. Each statement defines access to a namespace, for example, input, or * for all namespaces. The following namespaces are available:

workspace
input
output
lookup-table
iam
organization
monitoring
notifications
billing
cluster
udf
connection
reference-data
*

The statement details the edit and view actions allowed or denied for the selected namespace, and the resources that the statement applies to. You can also apply additional conditions to a statement, such as which workspaces to apply the statement to, and whether to apply it to all resources or only to resources that are running or not running.

You can define a policy using the FORM or JSON (either by editing the JSON or importing a JSON file).

To create a policy in the FORM:

1. Click MORE.
2. Select IAM.
3. In the Policies tab, click NEW POLICY.
4. Enter the policy NAME. As you build your policy a preview of the policy appears in the Preview pane.
5. In the Namespace tab, select a NAMESPACE.
6. Click NEXT.
7. In the Actions tab, select the POLICY TYPE (ALLOW or DENY).
8. Select the required edit and/or view ACTIONS.    
9. Click NEXT.
10. In the Resources tab, select the RESOURCES to apply this statement to.
11. Select the WORKSPACES (optional).
12. Select whether to apply the statement to resources that are running.
13. Click SAVE.
14. To add a statement to the policy, click ADD STATEMENT and repeat the steps above.
15. Click SAVE.

To create a policy using JSON:

1. Click MORE.
2. Select IAM.
3. In the Policies tab, click NEW POLICY.
4. Enter the policy NAME.
5. Click JSON.
6. Copy the JSON into the Statements area or click SELECT to import a file.
7. Click SAVE.

Editing a Policy

You can edit a policy.

To edit a policy:

1. Click MORE.
2. Select IAM.
3. In the Policies tab, click in the policy row.
4. Click DELETE. A confirmation message appears.
5. To delete the policy, click YES.

Deleting a Policy

You can delete a policy.

To delete a policy:

1. Click MORE.
2. Select IAM.
3. In the Policies tab, click in the policy row.
4. In the Policy area, click EDIT.
5. Make the changes.
6. Click APPLY.